Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-24800
HistoryJul 12, 2022 - 8:15 p.m.

CVE-2022-24800

2022-07-1220:15:07
CWE-362
[email protected]
web.nvd.nist.gov
58
4
cve-2022-24800
october cms
laravel php framework
rce
unauthenticated
vulnerability
patch

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.8%

JSON

October/System is the system module for October CMS, a self-hosted CMS platform based on the Laravel PHP Framework. Prior to versions 1.0.476, 1.1.12, and 2.2.15, when the developer allows the user to specify their own filename in the fromData method, an unauthenticated user can perform remote code execution (RCE) by exploiting a race condition in the temporary storage directory. This vulnerability affects plugins that expose the October\Rain\Database\Attach\File::fromData as a public interface and does not affect vanilla installations of October CMS since this method is not exposed or used by the system internally or externally. The issue has been patched in Build 476 (v1.0.476), v1.1.12, and v2.2.15. Those who are unable to upgrade may apply with patch to their installation manually as a workaround.

Affected configurations

Vulners
NVD
Node
octobercmsoctoberRange<1.0.476
OR
octobercmsoctoberRange1.1.01.1.12
OR
octobercmsoctoberRange2.0.02.2.15
VendorProductVersionCPE
octobercmsoctober*cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*
octobercmsoctober*cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*
octobercmsoctober*cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "october",
    "vendor": "octobercms",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.0.476"
      },
      {
        "status": "affected",
        "version": ">= 1.1.0, < 1.1.12"
      },
      {
        "status": "affected",
        "version": ">= 2.0.0, < 2.2.15"
      }
    ]
  }
]

Social References

More

Related

prion 1
osv 2
cnvd 1
nvd 1
cvelist 1
github 1
prion
prion
Race condition
2022-07-12 20:15:00
osv
osv
CVE-2022-24800
2022-07-12 20:15:07
October CMS upload process vulnerable to RCE via Race Condition
2022-07-13 21:42:45
cnvd
cnvd
October CMS Competition Conditions Issue Vulnerability
2022-07-15 00:00:00
nvd
nvd
CVE-2022-24800
2022-07-12 20:15:07
cvelist
cvelist
CVE-2022-24800 Race Condition in October CMS upload process
2022-07-12 20:05:10
github
github
October CMS upload process vulnerable to RCE via Race Condition
2022-07-13 21:42:45

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.8%

JSON
Related for CVE-2022-24800
prion1osv2cnvd1nvd1cvelist1github1