Lucene search

GitHub_MCVELIST:CVE-2023-48710

HistoryApr 15, 2024 - 5:47 p.m.

CVE-2023-48710 iTop limit pages/exec.php script to PHP files

2024-04-1517:47:51

CWE-552

GitHub_M

www.cve.org

cve-2023-48710

itop

php files

vulnerability

fixed

versions

2.7.10

3.0.4

3.1.1

3.2.0

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

Percentile

9.0%

JSON

iTop is an IT service management platform. Files from the env-production folder can be retrieved even though they should have restricted access. Hopefully, there is no sensitive files stored in that folder natively, but there could be from a third-party module.
The pages/exec.php script as been fixed to limit execution of PHP files only. Other file types won’t be retrieved and exposed. The vulnerability is fixed in 2.7.10, 3.0.4, 3.1.1, and 3.2.0.

CNA Affected

[
  {
    "vendor": "Combodo",
    "product": "iTop",
    "versions": [
      {
        "version": "< 2.7.10",
        "status": "affected"
      },
      {
        "version": ">= 3.0.0, < 3.0.4",
        "status": "affected"
      },
      {
        "version": ">= 3.1.0, < 3.1.1",
        "status": "affected"
      }
    ]
  }
]

References

github.com/Combodo/iTop/commit/3b2da39469f7a4636ed250ed0d33f4efff38be26

github.com/Combodo/iTop/security/advisories/GHSA-g652-q7cc-7hfc

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVELIST:CVE-2023-48710