CVE-2017-11441

Опубликовано: 19 июл. 2017

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

The WHM Upload Locale interface in cPanel before 56.0.51, 58.x before 58.0.52, 60.x before 60.0.45, 62.x before 62.0.27, 64.x before 64.0.33, and 66.x before 66.0.2 has XSS via a locale filename, aka SEC-297.

Ссылки

https://news.cpanel.com/cpanel-tsr-2017-0004-full-disclosure/
Vendor Advisory
https://news.cpanel.com/cpanel-tsr-2017-0004-full-disclosure/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cpanel:whm:*:*:*:*:*:*:*:*

Версия до 56.0.50 (включая)

Конфигурация 2

Одно из

cpe:2.3:a:cpanel:whm:58.0.3:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.4:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.5:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.6:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.7:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.8:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.11:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.12:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.13:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.17:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.19:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.20:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.23:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.24:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.25:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.26:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.27:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.28:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.29:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.30:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.31:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.32:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.34:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.36:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.37:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.41:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.43:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.44:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.45:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.46:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.47:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.48:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.49:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.50:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:58.0.51:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:cpanel:whm:60.0.3:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.4:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.5:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.6:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.8:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.9:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.10:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.11:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.12:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.13:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.14:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.15:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.17:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.18:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.19:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.22:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.24:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.25:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.26:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.27:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.28:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.31:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.32:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.34:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.35:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.36:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.37:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.38:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.39:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.42:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.43:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:60.0.44:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:cpanel:whm:62.0.1:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.2:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.4:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.5:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.6:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.7:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.8:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.9:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.10:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.11:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.12:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.14:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.15:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.16:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.17:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.19:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.20:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.23:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.24:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:62.0.26:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:a:cpanel:whm:64.0.0:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.1:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.2:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.3:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.4:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.7:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.9:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.11:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.12:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.13:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.14:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.15:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.17:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.18:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.19:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.20:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.21:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.22:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.24:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.27:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.28:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.29:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.30:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.31:*:*:*:*:*:*:*

cpe:2.3:a:cpanel:whm:64.0.32:*:*:*:*:*:*:*

Конфигурация 6

cpe:2.3:a:cpanel:whm:66.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00287

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-cr6w-p37f-qc23

CVSS3: 5.4

github

больше 3 лет назад

EPSS

Процентиль: 52%

0.00287

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79