CVE-2018-19274

Опубликовано: 17 нояб. 2018

Источник: nvd

CVSS3: 7.2

CVSS2: 6.5

EPSS Средний

Описание

Passing an absolute path to a file_exists check in phpBB before 3.2.4 allows Remote Code Execution through Object Injection by employing Phar deserialization when an attacker has access to the Admin Control Panel with founder permissions.

Ссылки

https://blog.ripstech.com/2018/phpbb3-phar-deserialization-to-remote-code-execution/
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/11/msg00029.html
Mailing List
Third Party Advisory
https://www.phpbb.com/community/viewtopic.php?f=14&t=2492206
Patch
Vendor Advisory
https://blog.ripstech.com/2018/phpbb3-phar-deserialization-to-remote-code-execution/
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/11/msg00029.html
Mailing List
Third Party Advisory
https://www.phpbb.com/community/viewtopic.php?f=14&t=2492206
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpbb:phpbb:*:*:*:*:*:*:*:*

Версия до 3.2.4 (исключая)

Конфигурация 2

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.14464

Средний

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-502

Связанные уязвимости

CVE-2018-19274

CVSS3: 7.2

ubuntu

около 7 лет назад

CVE-2018-19274

CVSS3: 7.2

debian

около 7 лет назад

Passing an absolute path to a file_exists check in phpBB before 3.2.4 ...

GHSA-h3mr-q96r-37v4

CVSS3: 7.2

github

больше 3 лет назад

phpBB Remote Code Execution

EPSS

Процентиль: 94%

0.14464

Средний

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-502