CVE-2024-27291: Docassemble open redirect

February 29, 2024

Impact

It is possible to create a URL that acts as an open redirect.

Patches

The vulnerability has been patched in version 1.4.97 of the master branch. The Docker image on docker.io has been patched.

Workarounds

If upgrading is not possible, manually apply the changes of 4801ac7 and restart the server (e.g., by pressing Save on the Configuration screen).

Credit

The vulnerability was discovered by Riyush Ghimire (@richighimi).

For more information

If you have any questions or comments about this advisory:

Open an issue in docassemble
Join the Slack channel
Email us at jhpyle@gmail.com

References

github.com/advisories/GHSA-7wxf-r2qv-9xwr
github.com/jhpyle/docassemble
github.com/jhpyle/docassemble/commit/4801ac7ff7c90df00ac09523077930cdb6dea2aa
github.com/jhpyle/docassemble/security/advisories/GHSA-7wxf-r2qv-9xwr
nvd.nist.gov/vuln/detail/CVE-2024-27291

Detect and mitigate CVE-2024-27291 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →