Vulnerability CVE-2016-6333

Vulnerability Name:

CVE-2016-6333 (CCN-125211)

Assigned:

2016-07-26

Published:

2017-04-20

Updated:

2017-04-29

Summary:

Cross-site scripting (XSS) vulnerability in the CSS user subpage preview feature in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrary web script or HTML via the edit box in Special:MyPage/common.css.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-79

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2016-6333

Source: BID
Type: UNKNOWN
98053

Source: CCN
Type: BID-98053
Mediawiki 'Special:MyPage/common.css' Cross-Site Scripting Vulnerability

Source: CONFIRM
Type: Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=1369613

Source: XF
Type: UNKNOWN
mediawiki-cve20166333-xss(125211)

Source: CCN
Type: MediaWiki Web site
[MediaWiki-announce] Security Release - 1.27.1, 1.26.4, 1.23.15

Source: MLIST
Type: Mailing List, Patch, Vendor Advisory
[MediaWiki-announce] 20160823 Security Release - 1.27.1, 1.26.4, 1.23.15

Source: CONFIRM
Type: Patch, Third Party Advisory
https://phabricator.wikimedia.org/T133147

Vulnerable Configuration:

Configuration 1:

cpe:/a:mediawiki:mediawiki:*:*:*:*:*:*:*:* (Version <= 1.23.14)

OR cpe:/a:mediawiki:mediawiki:1.26.0:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.1:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.2:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.3:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.4:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.27.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:mediawiki:mediawiki:1.27.0:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.23.14:*:*:*:*:*:*:*

OR cpe:/a:mediawiki:mediawiki:1.26.3:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.disco:def:201663330000000	V	CVE-2016-6333 on Ubuntu 19.04 (disco) - medium.	2017-04-20
oval:com.ubuntu.artful:def:20166333000	V	CVE-2016-6333 on Ubuntu 17.10 (artful) - medium.	2017-04-20
oval:com.ubuntu.trusty:def:20166333000	V	CVE-2016-6333 on Ubuntu 14.04 LTS (trusty) - medium.	2017-04-20
oval:com.ubuntu.bionic:def:20166333000	V	CVE-2016-6333 on Ubuntu 18.04 LTS (bionic) - medium.	2017-04-20
oval:com.ubuntu.cosmic:def:201663330000000	V	CVE-2016-6333 on Ubuntu 18.10 (cosmic) - medium.	2017-04-20
oval:com.ubuntu.cosmic:def:20166333000	V	CVE-2016-6333 on Ubuntu 18.10 (cosmic) - medium.	2017-04-20
oval:com.ubuntu.bionic:def:201663330000000	V	CVE-2016-6333 on Ubuntu 18.04 LTS (bionic) - medium.	2017-04-20
oval:com.ubuntu.precise:def:20166333000	V	CVE-2016-6333 on Ubuntu 12.04 LTS (precise) - medium.	2017-04-20

BACK