Lucene search

STAR_LabsCVELIST:CVE-2023-4223

HistoryNov 28, 2023 - 7:18 a.m.

CVE-2023-4223 Chamilo LMS File Upload Functionality Remote Code Execution

2023-11-2807:18:16

CWE-434

STAR_Labs

www.cve.org

cve-2023-4223

file upload

remote code execution

chamilo lms

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.9%

JSON

Unrestricted file upload in /main/inc/ajax/document.ajax.php in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Chamilo",
    "vendor": "Chamilo",
    "versions": [
      {
        "lessThanOrEqual": "1.11.24",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

References

github.com/chamilo/chamilo-lms/commit/3d74fb7d99bd2e287730552f7a66562417a55047

github.com/chamilo/chamilo-lms/commit/6f32625a012d5de2dfe8edbccb4ed14a85e310d4

github.com/chamilo/chamilo-lms/commit/e864127a440c2cab0eb62c113a04e2e904543a1f

starlabs.sg/advisories/23/23-4223

support.chamilo.org/projects/chamilo-18/wiki/security_issues#Issue-129-2023-09-04-Critical-impact-Moderate-risk-Authenticated-users-may-gain-unauthenticated-RCE-CVE-2023-4223CVE-2023-4224CVE-2023-4225CVE-2023-4226

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.9%

JSON

Related for CVELIST:CVE-2023-4223