CVE-2023-45670

MEDIUM EPSS 31.1%
Published Oct 30, 20232y ago · Modified Jun 17, 20262w ago
6.8 CVSS 3.1
Medium
Find Similar
Published Oct 30, 2023 2y ago
Last Modified Jun 17, 2026 2w ago

Description

Frigate is an open source network video recorder. Prior to version 0.13.0 Beta 3, the `config/save` and `config/set` endpoints of Frigate do not implement any CSRF protection. This makes it possible for a request sourced from another site to update the configuration of the Frigate server (e.g. via "drive-by" attack). Exploiting this vulnerability requires the attacker to both know very specific information about a user's Frigate server and requires an authenticated user to be tricked into clicking a specially crafted link to their Frigate instance. This vulnerability could exploited by an attacker under the following circumstances: Frigate publicly exposed to the internet (even with authentication); attacker knows the address of a user's Frigate instance; attacker crafts a specialized page which links to the user's Frigate instance; attacker finds a way to get an authenticated user to visit their specialized page and click the button/link. This issue can lead to arbitrary configuration updates for the Frigate server, resulting in denial of service and possible data exfiltration. Version 0.13.0 Beta 3 contains a patch.

CVSS Details

Base Score
6.8
Exploitability
1.6
Impact
5.2
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
31.1% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-352 Cross-Site Request Forgery (CSRF) Authentication

Affected Products 3

VendorProductVersionRange
frigatefrigate* ≤0.13.0
frigatefrigate0.13.0any
frigatefrigate0.13.0any

References 6

  • about.gitlab.com https://about.gitlab.com/blog/2021/09/07/why-are-developers-vulnerable-to-driveby-attacks/
    Not Applicable
  • github.com https://github.com/blakeblackshear/frigate/blob/5658e5a4cc7376504af9de5e1eff178939a13e7f/frigate/http.py#L1060
    Product
  • github.com https://github.com/blakeblackshear/frigate/blob/6aedc39a9a421cf48000a727f36b4c1495848a1d/frigate/http.py#L998
    Product
  • github.com https://github.com/blakeblackshear/frigate/discussions/8366
    Release Notes
  • github.com https://github.com/blakeblackshear/frigate/security/advisories/GHSA-xq49-hv88-jr6h
    ExploitVendor Advisory
  • securitylab.github.com https://securitylab.github.com/advisories/GHSL-2023-190_Frigate/

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.