Vulnerability CVE-2017-14251


Published: 2017-09-11

Description:
Unrestricted File Upload vulnerability in the fileDenyPattern in sysext/core/Classes/Core/SystemEnvironmentBuilder.php in TYPO3 7.6.0 to 7.6.21 and 8.0.0 to 8.7.4 allows remote authenticated users to upload files with a .pht extension and consequently execute arbitrary PHP code.

Type:

CWE-434

(Unrestricted Upload of File with Dangerous Type)

Vendor: Typo3
Product: Typo3 
Version:
8.7.4
8.7.3
8.7.2
8.7.1
8.7.0
8.6.1
8.6.0
8.5.1
8.5.0
8.4.1
8.4.0
8.3.1
8.3.0
8.2.1
8.2.0
8.1.2
8.1.1
8.1.0
8.0.1
8.0.0
7.6.9
7.6.8
7.6.7
7.6.6
7.6.5
7.6.4
7.6.3
7.6.21
7.6.20
7.6.2
7.6.19
7.6.18
7.6.17
7.6.16
7.6.15
7.6.14
7.6.13
7.6.12
7.6.11
7.6.10
7.6.1
7.6.0
Vendor: IBM
Product: Business process manager 
Version: 8.5.7.0; 8.0.1.1;

CVSS2 => (AV:N/AC:L/Au:S/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.5/10
6.4/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
http://blog.emaze.net/2017/12/typo3-unrestricted-file-upload-remote.html
http://www.securityfocus.com/bid/100620
http://www.securitytracker.com/id/1039295
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-007/

Related CVE
CVE-2018-1920
IBM Marketing Platform 9.1.0, 9.1.2 and 10.1 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X...
CVE-2018-1424
IBM Marketing Platform 9.1.0, 9.1.2, and 10.1 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM ...
CVE-2018-1730
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147709...
CVE-2018-1905
IBM WebSphere Application Server 9.0.0.0 through 9.0.0.9 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory reso...
CVE-2018-1779
IBM API Connect 2018.1 through 2018.3.7 could allow an unauthenticated attacker to cause a denial of service due to not setting limits on JSON payload size. IBM X-Force ID: 148802.
CVE-2018-1643
The Installation Verification Tool of IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona...
CVE-2018-1808
IBM WebSphere Commerce 9.0.0.0 through 9.0.0.6 could allow some server-side code injection due to inadequate input control. IBM X-Force ID: 149828.
CVE-2018-1792
IBM WebSphere MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, 9.0.1 through 9.0.5, and 9.1.0.0 could allow a local user to inject code that could be executed with root privileges. IBM X-Force ID: 148947.

Copyright 2018, cxsecurity.com

 

Back to Top