===================================================================== CERT-Renater Note d'Information No. 2021/VULN124 _____________________________________________________________________ DATE : 23/03/2022 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running CKEditor 4 versions prior to 4.18.0. ===================================================================== https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89 https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-x2hh _____________________________________________________________________ HTML processing vulnerability allowing to execute JavaScript code Moderate jacekbogdanski published GHSA-4fc4-4p5g-6w89 Package No package listed Affected versions < 4.18.0 Patched versions 4.18.0 Description Affected packages The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. Impact A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.18.0. Patches The problem has been recognized and patched. The fix will be available in version 4.18.0. For more information Email us at security@cksource.com if you have any questions or comments about this advisory. Acknowledgements The CKEditor 4 team would like to thank GHSL team member Kevin Backhouse (@kevinbackhouse) for recognizing and reporting this vulnerability. CVE ID CVE-2022-24728 GHSA ID GHSA-4fc4-4p5g-6w89 _____________________________________________________________________ Regular expression Denial of Service in dialog plugin Low jacekbogdanski published GHSA-f6rf-9m92-x2hh Package No package listed Affected versions < 4.18.0 Patched versions 4.18.0 Description Affected packages The vulnerability has been discovered and fixed in the dialog plugin. Packages indirectly affected by the issue having dialog plugin dependency: Link Image Enhanced Image Code Snippet Iframe Dialog Impact A potential vulnerability has been discovered in CKEditor 4 dialog plugin. The vulnerability allowed to abuse a dialog input validator regular expression, which could cause a significant performance drop resulting in a browser tab freeze. It affects all users using the CKEditor 4 plugins listed above at version < 4.18.0. Patches The problem has been recognized and patched. The fix will be available in version 4.18.0. For more information Email us at security@cksource.com if you have any questions or comments about this advisory. Acknowledgements This issue was discovered by the CKEditor 4 team during our regular security audit. CVE ID CVE-2022-24729 GHSA ID GHSA-f6rf-9m92-x2hh ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================