CVE-2024-29888

Saleor is an e-commerce platform that serves high-volume companies. When using Pickup: Local stock only click-and-collect as a delivery method in specific conditions the customer could overwrite the warehouse address with its own, which exposes its address as click-and-collect address. This issue has been patched in versions: 3.14.61, 3.15.37, 3.16.34, 3.17.32, 3.18.28, 3.19.15.

Weakness

The product does not properly prevent a person’s private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected.

Potential Mitigations

• Identify and consult all relevant regulations for personal privacy. An organization may be required to comply with certain federal and state regulations, depending on its location, the type of business it conducts, and the nature of any private data it handles. Regulations may include Safe Harbor Privacy Framework [REF-340], Gramm-Leach Bliley Act (GLBA) [REF-341], Health Insurance Portability and Accountability Act (HIPAA) [REF-342], General Data Protection Regulation (GDPR) [REF-1047], California Consumer Privacy Act (CCPA) [REF-1048], and others.
• Carefully evaluate how secure design may interfere with privacy, and vice versa. Security and privacy concerns often seem to compete with each other. From a security perspective, all important operations should be recorded so that any anomalous activity can later be identified. However, when private data is involved, this practice can in fact create risk. Although there are many ways in which private data can be handled unsafely, a common risk stems from misplaced trust. Programmers often trust the operating environment in which a program runs, and therefore believe that it is acceptable store private information on the file system, in the registry, or in other locally-controlled resources. However, even if access to certain resources is restricted, this does not guarantee that the individuals who do have access can be trusted.

Related Attack Patterns

• https://cwe.mitre.org/data/definitions/464.html
• https://cwe.mitre.org/data/definitions/467.html
• https://cwe.mitre.org/data/definitions/498.html
• https://cwe.mitre.org/data/definitions/508.html

References

• https://github.com/saleor/saleor/commit/22a1aa3ef0bc54156405f69146788016a7f3f761
• https://github.com/saleor/saleor/commit/39abb0f4e4fe6503f81bfbb871227e4f70bcdd5c
• https://github.com/saleor/saleor/commit/47cedfd7d6524d79bdb04708edcdbb235874de6b
• https://github.com/saleor/saleor/commit/997f7ea4f576543ec88679a86bfe1b14f7f2ff26
• https://github.com/saleor/saleor/commit/b7cecda8b603f7472790150bb4508c7b655946d4
• https://github.com/saleor/saleor/commit/d8ba545c16ad3153febc5b5be8fd2ef75da9fc95
• https://github.com/saleor/saleor/commit/dccc2c842b4e2e09470929c80f07dc137e439182
• https://github.com/saleor/saleor/commit/ef003c76a304c89ddb2dc65b7f1d5b3b2ba1c640
• https://github.com/saleor/saleor/pull/15694
• https://github.com/saleor/saleor/pull/15697
• https://github.com/saleor/saleor/security/advisories/GHSA-mrj3-f2h4-7w45
• https://github.com/saleor/saleor/commit/22a1aa3ef0bc54156405f69146788016a7f3f761
• https://github.com/saleor/saleor/commit/39abb0f4e4fe6503f81bfbb871227e4f70bcdd5c
• https://github.com/saleor/saleor/commit/47cedfd7d6524d79bdb04708edcdbb235874de6b
• https://github.com/saleor/saleor/commit/997f7ea4f576543ec88679a86bfe1b14f7f2ff26
• https://github.com/saleor/saleor/commit/b7cecda8b603f7472790150bb4508c7b655946d4
• https://github.com/saleor/saleor/commit/d8ba545c16ad3153febc5b5be8fd2ef75da9fc95
• https://github.com/saleor/saleor/commit/dccc2c842b4e2e09470929c80f07dc137e439182
• https://github.com/saleor/saleor/commit/ef003c76a304c89ddb2dc65b7f1d5b3b2ba1c640
• https://github.com/saleor/saleor/pull/15694
• https://github.com/saleor/saleor/pull/15697
• https://github.com/saleor/saleor/security/advisories/GHSA-mrj3-f2h4-7w45