Lucene search

INCIBECVELIST:CVE-2023-5965

HistoryNov 30, 2023 - 1:26 p.m.

CVE-2023-5965 Unrestricted Upload of File with Dangerous Type in EspoCRM

2023-11-3013:26:15

CWE-434

INCIBE

www.cve.org

cve-2023-5965

unrestricted upload

specially crafted zip

espocrm

arbitrary php code execution

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.001

Percentile

23.6%

JSON

An authenticated privileged attacker could upload a specially crafted zip to the EspoCRM server in version 7.2.5, via the update form, which could lead to arbitrary PHP code execution.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "EspoCRM",
    "vendor": "EspoCRM",
    "versions": [
      {
        "lessThanOrEqual": " 7.5.2",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-espocrm

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.001

Percentile

23.6%

JSON

Related for CVELIST:CVE-2023-5965