Lucene search

GitHub Advisory DatabaseGHSA-25H3-MW3P-W8R7

HistoryMay 24, 2022 - 5:26 p.m.

Dolibarr CRM allows Privilege Escalation

2022-05-2417:26:18

CWE-269

GitHub Advisory Database

github.com

dolibarr

crm

privilege escalation

file upload

html source code

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

35.1%

JSON

Dolibarr CRM before 11.0.5 allows privilege escalation. This could allow remote authenticated attackers to upload arbitrary files via societe/document.php in which “disabled” is changed to “enabled” in the HTML source code.

Affected configurations

Vulners

Node

dolibarrdolibarrRange<11.0.5

VendorProductVersionCPE
dolibarrdolibarr*cpe:2.3:a:dolibarr:dolibarr:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
dolibarr	dolibarr	*	cpe:2.3:a:dolibarr:dolibarr::::::::

References

github.com/advisories/GHSA-25h3-mw3p-w8r7

github.com/Dolibarr/dolibarr/blob/e76641c491e4105e9cb1ded6149771c621d822b5/ChangeLog#L2933

nvd.nist.gov/vuln/detail/CVE-2020-14201

www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2020-011

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

35.1%

JSON

Related for GHSA-25H3-MW3P-W8R7