CVE-2026-22589

HIGH EPSS 30.2%
Published Jan 10, 20265mo ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Jan 10, 2026 5mo ago
Last Modified Jun 17, 2026 1w ago

Description

Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 4.10.2, 5.0.7, 5.1.9, and 5.2.5, an Unauthenticated Insecure Direct Object Reference (IDOR) vulnerability was identified that allows an unauthenticated attacker to access guest address information without supplying valid credentials or session cookies. This issue has been patched in versions 4.10.2, 5.0.7, 5.1.9, and 5.2.5.

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability None

Threat Intelligence

EPSS Exploit Probability
30.2% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-639

Affected Products 4

VendorProductVersionRange
spreecommercespree* <4.10.2
spreecommercespree*≥5.0.0  –  <5.0.7
spreecommercespree*≥5.1.0  –  <5.1.9
spreecommercespree*≥5.2.0  –  <5.2.5

References 5

  • github.com https://github.com/spree/spree/commit/16067def6de8e0742d55313e83b0fbab6d2fd795
    Patch
  • github.com https://github.com/spree/spree/commit/4c2bd62326fba0d846fd9e4bad2c62433829b3ad
    Patch
  • github.com https://github.com/spree/spree/commit/d051925778f24436b62fa8e4a6b842c72ca80a67
    Patch
  • github.com https://github.com/spree/spree/commit/e1cff4605eb15472904602aebaf8f2d04852d6ad
    Patch
  • github.com https://github.com/spree/spree/security/advisories/GHSA-3ghg-3787-w2xr
    ExploitVendor Advisory

Remediation

  • github.com https://github.com/spree/spree/commit/16067def6de8e0742d55313e83b0fbab6d2fd795
    Patch
  • github.com https://github.com/spree/spree/commit/4c2bd62326fba0d846fd9e4bad2c62433829b3ad
    Patch
  • github.com https://github.com/spree/spree/commit/d051925778f24436b62fa8e4a6b842c72ca80a67
    Patch
  • github.com https://github.com/spree/spree/commit/e1cff4605eb15472904602aebaf8f2d04852d6ad
    Patch