CVE-2023-4220

2023-11-2808:15:07

CWE-79

CWE-434

[email protected]

web.nvd.nist.gov

cve-2023-4220

unrestricted file upload

bigupload.php

cross-site scripting

remote code execution

chamilo lms

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Unrestricted file upload in big file upload functionality in /main/inc/lib/javascript/bigupload/inc/bigUpload.php in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.

Affected configurations

NVD

Node

chamilochamilo_lmsRange≤1.11.24

CPENameOperatorVersion
chamilo:chamilo_lmschamilo chamilo lmsle1.11.24

CPE	Name	Operator	Version
chamilo:chamilo_lms	chamilo chamilo lms	le	1.11.24

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Chamilo",
    "vendor": "Chamilo",
    "versions": [
      {
        "lessThanOrEqual": "1.11.24",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

References

github.com/chamilo/chamilo-lms/commit/3b487a55076fb06f96809b790a35dcdd42f8ec49

starlabs.sg/advisories/23/23-4220

support.chamilo.org/projects/chamilo-18/wiki/security_issues#Issue-130-2023-09-04-Critical-impact-High-risk-Unauthenticated-users-may-gain-XSS-and-unauthenticated-RCE-CVE-2023-4220