Japan Vulnerability NotesJVN:53871926JVN#53871926: EC-CUBE improperly handles HTTP Host header values
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
42.3%
EC-CUBE provided by EC-CUBE CO.,LTD. improperly handles HTTP Host header values (CWE-913).
Impact
A remote attacker may direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users.
Solution
Apply Workaround
Apply the following workaround to avoid the impacts of this vulnerability.
- Set TRUSTED_HOSTS
For more information, refer to the information provided by the developer.
Update the software and add the settings
The developer has released EC-CUBE 4.1.2 (for EC-CUBE 4 series) which provides the user interface to configure TRUSTED_HOSTS.
Configure TRUSTED_HOSTS from [Admin Console > Settings > System Settings > Security].
According to the developer, TRUSTED_HOSTS is automatically configured when EC-CUBE 4.1.2 is newly installed.
Products Affected
- EC-CUBE 3.0.0 to 3.0.18-p3 (EC-CUBE 3 series)
- EC-CUBE 4.0.0 to 4.1.1 (EC-CUBE 4 series)
Related
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
0.001 Low
EPSS
Percentile
42.3%