Lucene search

[email protected]NVD:CVE-2023-50982

HistoryJan 08, 2024 - 8:15 p.m.

CVE-2023-50982

2024-01-0820:15:44

CWE-79

CWE-434

[email protected]

web.nvd.nist.gov

stud.ip

xss

remote code execution

www-data user

fixed versions

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.001

Percentile

45.5%

JSON

Stud.IP 5.x through 5.3.3 allows XSS with resultant upload of executable files, because upload_action and edit_action in Admin_SmileysController do not check the file extension. This leads to remote code execution with the privileges of the www-data user. The fixed versions are 5.3.4, 5.2.6, 5.1.7, and 5.0.9.

Affected configurations

Nvd

Node

studipstud.ipRange<5.0.9

studipstud.ipRange5.1–5.1.7

studipstud.ipRange5.2–5.2.6

studipstud.ipRange5.3–5.3.4

VendorProductVersionCPE
studipstud.ip*cpe:2.3:a:studip:stud.ip:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
studip	stud.ip	*	cpe:2.3:a:studip:stud.ip::::::::

References

gitlab.studip.de/studip/studip/-/tags

rehmeinfosec.de/labor/cve-2023-50982

sourceforge.net/projects/studip/files/Stud.IP/5.4/

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

AI Score

9.3

Confidence

High

EPSS

0.001

Percentile

45.5%

JSON

Related for NVD:CVE-2023-50982

prion1 cvelist1 osv1 cve1