CVE-2009-2146

2022-10-0316:24:05

[email protected]

web.nvd.nist.gov

cve-2009-2146

unrestricted file upload

sugarcrm

remote execution

nvd

6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Unrestricted file upload vulnerability in the Compose Email feature in the Emails module in Sugar Community Edition (aka SugarCRM) before 5.2f allows remote authenticated users to execute arbitrary code by uploading a file with only an extension in its name, then accessing the file via a direct request to a modified filename under cache/modules/Emails/, as demonstrated using .php as the entire original name.

Affected configurations

NVD

Node

sugarcrmsugarcrmRange≤5.2esugar_community_edition

sugarcrmsugarcrmMatch5.0.0sugar_community_edition

sugarcrmsugarcrmMatch5.0.0hsugar_community_edition

sugarcrmsugarcrmMatch5.0.0ksugar_community_edition

sugarcrmsugarcrmMatch5.1.0sugar_community_edition

sugarcrmsugarcrmMatch5.1.0-betasugar_community_edition

sugarcrmsugarcrmMatch5.1csugar_community_edition

sugarcrmsugarcrmMatch5.2csugar_community_edition

sugarcrmsugarcrmMatch5.2dsugar_community_edition

CPENameOperatorVersion
sugarcrm:sugarcrmsugarcrmle5.2e
sugarcrm:sugarcrmsugarcrmeq5.0.0
sugarcrm:sugarcrmsugarcrmeq5.0.0h
sugarcrm:sugarcrmsugarcrmeq5.0.0k
sugarcrm:sugarcrmsugarcrmeq5.1.0
sugarcrm:sugarcrmsugarcrmeq5.1.0-beta
sugarcrm:sugarcrmsugarcrmeq5.1c
sugarcrm:sugarcrmsugarcrmeq5.2c
sugarcrm:sugarcrmsugarcrmeq5.2d

CPE	Name	Operator	Version
sugarcrm:sugarcrm	sugarcrm	le	5.2e
sugarcrm:sugarcrm	sugarcrm	eq	5.0.0
sugarcrm:sugarcrm	sugarcrm	eq	5.0.0h
sugarcrm:sugarcrm	sugarcrm	eq	5.0.0k
sugarcrm:sugarcrm	sugarcrm	eq	5.1.0
sugarcrm:sugarcrm	sugarcrm	eq	5.1.0-beta
sugarcrm:sugarcrm	sugarcrm	eq	5.1c
sugarcrm:sugarcrm	sugarcrm	eq	5.2c
sugarcrm:sugarcrm	sugarcrm	eq	5.2d