Lucene search

[email protected]CVE-2015-1399

HistoryApr 29, 2015 - 10:59 p.m.

CVE-2015-1399

2015-04-2922:59:02

CWE-94

[email protected]

web.nvd.nist.gov

cve-2015-1399

php

remote file inclusion

mage_core_block_template_zend

magento ce

magento ee

code execution

url

setscriptpath function

security vulnerability

nvd

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.615 Medium

EPSS

Percentile

97.8%

JSON

PHP remote file inclusion vulnerability in the fetchView function in the Mage_Core_Block_Template_Zend class in Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allows remote administrators to execute arbitrary PHP code via a URL in unspecified vectors involving the setScriptPath function. NOTE: it is not clear whether this issue crosses privilege boundaries, since administrators might already have privileges to include arbitrary files.

Affected configurations

NVD

Node

magentomagentoMatch1.9.1.0community

magentomagentoMatch1.14.1.0enterprise

CPENameOperatorVersion
magento:magentomagentoeq1.9.1.0
magento:magentomagentoeq1.14.1.0

CPE	Name	Operator	Version
magento:magento	magento	eq	1.9.1.0
magento:magento	magento	eq	1.14.1.0

References

blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/

magento.com/blog/technical/critical-security-advisory-remote-code-execution-rce-vulnerability

www.securitytracker.com/id/1032194

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.615 Medium

EPSS

Percentile

97.8%

JSON

Related for CVE-2015-1399

veracode1 prion1 cvelist1 nvd1 checkpoint_advisories1 openvas1