Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:1361412562310150767HistoryOct 04, 2022 - 12:00 a.m.
phpIPAM <= 1.5.2 SSRF Vulnerability
2022-10-0400:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
7
phpipam
ssrf
vulnerability
server-side
request
forgery
admin
subnets
ripe-query.php
solution
upgrade
disable
remove
product
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.003
Percentile
68.8%
phpIPAM is prone to a server-side request forgery (SSRF)
vulnerability.
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:phpipam:phpipam";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.150767");
script_version("2023-10-19T05:05:21+0000");
script_tag(name:"last_modification", value:"2023-10-19 05:05:21 +0000 (Thu, 19 Oct 2023)");
script_tag(name:"creation_date", value:"2022-10-04 10:13:11 +0000 (Tue, 04 Oct 2022)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-10-05 14:15:00 +0000 (Wed, 05 Oct 2022)");
script_cve_id("CVE-2022-41443");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"WillNotFix");
script_name("phpIPAM <= 1.5.2 SSRF Vulnerability");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Web application abuses");
script_dependencies("gb_phpipam_http_detect.nasl");
script_mandatory_keys("phpipam/detected");
script_tag(name:"summary", value:"phpIPAM is prone to a server-side request forgery (SSRF)
vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"The header injection vulnerability is located in the
/admin/subnets/ripe-query.php component.");
script_tag(name:"affected", value:"phpIPAM through version 1.5.2.");
script_tag(name:"solution", value:"No known solution was made available for at least one year since
the disclosure of this vulnerability. Likely none will be provided anymore. General solution options
are to upgrade to a newer release, disable respective features, remove the product or replace the
product by another one.");
script_xref(name:"URL", value:"https://gist.github.com/enferas/7acd9636cc221bbf61d51425ab91ef01");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if (!port = get_app_port(cpe: CPE))
exit(0);
if (!infos = get_app_version_and_location(cpe: CPE, port: port, exit_no_version: TRUE))
exit(0);
version = infos["version"];
location = infos["location"];
if (version_is_less_equal(version: version, test_version: "1.5.2")) {
report = report_fixed_ver(installed_version: version, fixed_version: "None", install_path: location);
security_message(port: port, data: report);
exit(0);
}
exit(0);
Related
osv
osv
CVE-2022-41443
2022-10-03 16:15:13
prion
prion
Design/Logic Flaw
2022-10-03 16:15:00
cve
cve
CVE-2022-41443
2022-10-03 16:15:13
cvelist
cvelist
CVE-2022-41443
2022-10-03 15:31:47
cnvd
cnvd
phpIPAM header injection vulnerability
2022-10-11 00:00:00
nvd
nvd
CVE-2022-41443
2022-10-03 16:15:13
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.003
Percentile
68.8%
Related for OPENVAS:1361412562310150767