Description

sentry-javascript provides Sentry SDKs for JavaScript. An unsanitized input of Next.js SDK tunnel endpoint allows sending HTTP requests to arbitrary URLs and reflecting the response back to the user. This issue only affects users who have Next.js SDK tunneling feature enabled. The problem has been fixed in version 7.77.0.

Remediation

References

https://github.com/getsentry/sentry-javascript/commit/ddbda3c02c35aba8c5235e0cf07fc5bf656f81be

https://github.com/getsentry/sentry-javascript/pull/9415

https://github.com/getsentry/sentry-javascript/security/advisories/GHSA-2rmr-xw8m-22q9

Related Vulnerabilities

CVE-2022-31189 Vulnerability in maven package org.dspace:dspace-jspui

CVE-2022-31172 Vulnerability in maven package org.webjars.npm:openzeppelin__contracts-upgradeable

CVE-2017-2612 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2022-24891 Vulnerability in maven package org.owasp.esapi:esapi

CVE-2023-43666 Vulnerability in maven package org.apache.inlong:manager-web

Severity

High

Classification

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Patch Vendor Advisory NVD-CWE-noinfo