CVE-2024-42355

EPSS 0.86%
Veröffentlicht 08.08.2024 15:15:18
Zuletzt bearbeitet 12.08.2024 15:40:32
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Shopware vulnerable to Server Side Template Injection in Twig using deprecation silence tag

Shopware, an open ecommerce platform, has a new Twig Tag `sw_silent_feature_call` which silences deprecation messages while triggered in this tag. Prior to versions 6.6.5.1 and 6.5.8.13, it accepts as parameter a string the feature flag name to silence, but this parameter is not escaped properly and allows execution of code. Update to Shopware 6.6.5.1 or 6.5.8.13 to receive a patch. For older versions of 6.2, 6.3,  and 6.4, corresponding security measures are also available via a plugin.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 8

NVD 2 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Shopware ≫ Shopware Version < 6.5.8.13

Shopware ≫ Shopware Version >= 6.6.0.0 < 6.6.5.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.86%	0.538

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
security-advisories@github.com	8.3	2.8	5.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-1336 Improper Neutralization of Special Elements Used in a Template Engine

The product uses a template engine to insert or process externally-influenced input, but it does not neutralize or incorrectly neutralizes special elements or syntax that can be interpreted as template expressions or other code directives when processed by the engine.

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://github.com/shopware/core/commit/a784aa1cec0624e36e0ee4d41aeebaed40e0442f

Patch

https://github.com/shopware/core/commit/d35ee2eda5c995faeb08b3dad127eab65c64e2a2

Patch

https://github.com/shopware/shopware/commit/8504ba7e56e53add6a1d5b9d45015e3d899cd0ac

Patch

https://github.com/shopware/shopware/commit/445c6763cc093fbd651e0efaa4150deae4ae60da

Patch

https://github.com/shopware/shopware/security/advisories/GHSA-27wp-jvhw-v4xp

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-42355

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-42355

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-42355

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-42355