Miggo Logo
Miggo Vulnerability Database
CVE-2022-3068

CVE-2022-3068: OctoPrint Improper Privilege Management vulnerability

8.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-3068
GHSA ID
GHSA-2p75-q37p-f852
EPSS Score
0.15275%
CWE
CWE-269
Published
9/22/2022
Updated
10/8/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
OctoPrintpip< 1.8.31.8.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stemmed from an incorrect permission role assignment in the PluginManager's permission definitions. The commit diff shows the critical change was in the 'get_additional_permissions' method where the LIST permission's role was changed from 'manage' to 'list'. This misconfiguration allowed users with read-only privileges (READONLY_GROUP/USER_GROUP) to inherit MANAGE-level permissions through the 'manage' role assignment. The function's permission definitions directly control access rights, making it the clear vulnerability source.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

O*toPrint prior to *.*.* *llows * us*r wit* r*** ****ss only to ****ss * privil**** us*r's ***ount *n* *un*tion*lity. V*rsion *.*.* *ont*ins * p*t** *or t*is issu*.

Reasoning

T** vuln*r**ility st*mm** *rom *n in*orr**t p*rmission rol* *ssi*nm*nt in t** Plu*inM*n***r's p*rmission ***initions. T** *ommit *i** s*ows t** *riti**l ***n** w*s in t** '**t_***ition*l_p*rmissions' m*t*o* w**r* t** LIST p*rmission's rol* w*s ***n**