4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
4.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
12.7%
Backend users with the default “Publisher” system role have access to create & manage users where they can choose which role the new user has. This means that a user with “Publisher” access has the ability to escalate their access to “Developer” access.
Issue has been patched in Build 470 (v1.0.470) & v1.1.1.
Apply https://github.com/octobercms/october/commit/78a37298a4ed4602b383522344a31e311402d829 to your installation manually if unable to upgrade to Build 470 or v1.1.1.
Reported by Hoan Hoang
If you have any questions or comments about this advisory:
<img width=“1098” alt=“Screen Shot 2020-10-10 at 1 37 25 PM” src=“https://user-images.githubusercontent.com/7253840/95663611-e6326c80-0afd-11eb-8a1e-8b767a7202fb.png”>
CPE | Name | Operator | Version |
---|---|---|---|
october/backend | lt | 1.0.470 |
github.com/advisories/GHSA-rfjc-xrmf-5vvw
github.com/octobercms/october/commit/4c650bb775ab849e48202a4923bac93bd74f9982
github.com/octobercms/october/commit/78a37298a4ed4602b383522344a31e311402d829
github.com/octobercms/october/security/advisories/GHSA-rfjc-xrmf-5vvw
nvd.nist.gov/vuln/detail/CVE-2020-15248
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
4.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
12.7%