Описание
SuiteCRM before 7.11.17 is vulnerable to remote code execution via the system settings Log File Name setting. In certain circumstances involving admin account takeover, logger_file_name can refer to an attacker-controlled .php file under the web root.
SuiteCRM before 7.11.17 is vulnerable to remote code execution via the system settings Log File Name setting. In certain circumstances involving admin account takeover, logger_file_name can refer to an attacker-controlled .php file under the web root.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-28328
- https://github.com/mcorybillington/SuiteCRM-RCE
- https://suitecrm.com/suitecrm-7-11-17-7-10-28-lts-versions-released
- http://packetstormsecurity.com/files/159937/SuiteCRM-7.11.15-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/162975/SuiteCRM-Log-File-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/165001/SuiteCRM-7.11.18-Remote-Code-Execution.html
Связанные уязвимости
SuiteCRM before 7.11.17 is vulnerable to remote code execution via the system settings Log File Name setting. In certain circumstances involving admin account takeover, logger_file_name can refer to an attacker-controlled .php file under the web root.