Lucene search

GitHub_MCVELIST:CVE-2024-28116

HistoryMar 21, 2024 - 9:44 p.m.

CVE-2024-28116 Server-Side Template Injection (SSTI) with Grav CMS security sandbox bypass

2024-03-2121:44:29

CWE-94

CWE-1336

GitHub_M

www.cve.org

cve-2024-28116

server-side template injection

grav cms

security sandbox bypass

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Grav is an open-source, flat-file content management system. Grav CMS prior to version 1.7.45 is vulnerable to a Server-Side Template Injection (SSTI), which allows any authenticated user (editor permissions are sufficient) to execute arbitrary code on the remote server bypassing the existing security sandbox. Version 1.7.45 contains a patch for this issue.

CNA Affected

[
  {
    "vendor": "getgrav",
    "product": "grav",
    "versions": [
      {
        "version": "< 1.7.45",
        "status": "affected"
      }
    ]
  }
]

References

github.com/getgrav/grav/commit/4149c81339274130742831422de2685f298f3a6e

github.com/getgrav/grav/security/advisories/GHSA-c9gp-64c4-2rrh

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVELIST:CVE-2024-28116