CVE-2018-1999017

Exploit

EPSS 0.35%
Veröffentlicht 23.07.2018 15:29:00
Zuletzt bearbeitet 21.11.2024 03:57:03
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Pydio version 8.2.0 and earlier contains a Server-Side Request Forgery (SSRF) vulnerability in plugins/action.updater/UpgradeManager.php Line: 154, getUpgradePath($url) that can result in an authenticated admin users requesting arbitrary URL's, pivoting requests through the server. This attack appears to be exploitable via the attacker gaining access to an administrative account, enters a URL into Upgrade Engine, and reloads the page or presses "Check Now". This vulnerability appears to have been fixed in 8.2.1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Pydio ≫ Pydio Version <= 8.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.35%	0.546

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.9	1.2	3.6	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:P/I:N/A:N

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

https://pydio.com/en/community/releases/pydio-core/pydio-821-security-release

Patch

Vendor Advisory

Release Notes

https://www.mike-gualtieri.com/files/Pydio-8-VulnerabilityDisclosure-Jul18.txt

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2018-1999017

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-1999017

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-1999017

EUVD