CVE-2021-29440

Exploit

EPSS 14.44%
Veröffentlicht 13.04.2021 20:15:22
Zuletzt bearbeitet 21.11.2024 06:01:06
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Grav is a file based Web-platform. Twig processing of static pages can be enabled in the front matter by any administrative user allowed to create or edit pages. As the Twig processor runs unsandboxed, this behavior can be used to gain arbitrary code execution and elevate privileges on the instance. The issue was addressed in version 1.7.11.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Getgrav ≫ Grav Version < 1.7.11

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	14.44%	0.942

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
security-advisories@github.com	8.4	1.7	6	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://packetstormsecurity.com/files/162987/Grav-CMS-1.7.10-Server-Side-Template-Injection.html

Third Party Advisory

Exploit

VDB Entry

https://blog.sonarsource.com/grav-cms-code-execution-vulnerabilities

Third Party Advisory

Exploit

https://github.com/getgrav/grav/security/advisories/GHSA-g8r4-p96j-xfxc

Third Party Advisory

https://packagist.org/packages/getgrav/grav

Third Party Advisory

Product