CVE-2016-2164

Опубликовано: 11 апр. 2016

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

The (1) FileService.importFileByInternalUserId and (2) FileService.importFile SOAP API methods in Apache OpenMeetings before 3.1.1 improperly use the Java URL class without checking the specified protocol handler, which allows remote attackers to read arbitrary files by attempting to upload a file.

Ссылки

http://openmeetings.apache.org/security.html
Patch
Vendor Advisory
http://packetstormsecurity.com/files/136434/Apache-OpenMeetings-3.0.7-Arbitary-File-Read.html
http://www.securityfocus.com/archive/1/537887/100/0/threaded
https://www.apache.org/dist/openmeetings/3.1.1/CHANGELOG
http://openmeetings.apache.org/security.html
Patch
Vendor Advisory
http://packetstormsecurity.com/files/136434/Apache-OpenMeetings-3.0.7-Arbitary-File-Read.html
http://www.securityfocus.com/archive/1/537887/100/0/threaded
https://www.apache.org/dist/openmeetings/3.1.1/CHANGELOG

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apache:openmeetings:*:*:*:*:*:*:*:*

Версия до 3.1.0 (включая)

EPSS

Процентиль: 79%

0.01232

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-f6vf-465r-h42p