CVE-2024-35226

2024-05-2800:00:00

ubuntu.com

php

presentation separation

extends-tag

malicious file

vulnerability

update

unix

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Smarty is a template engine for PHP, facilitating the separation of
presentation (HTML/CSS) from application logic. In affected versions
template authors could inject php code by choosing a malicious file name
for an extends-tag. Sites that cannot fully trust template authors should
update asap. All users are advised to update. There is no patch for users
on the v3 branch. There are no known workarounds for this vulnerability.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchsmarty3< anyUNKNOWN
ubuntu20.04noarchsmarty3< anyUNKNOWN
ubuntu22.04noarchsmarty3< anyUNKNOWN
ubuntu23.10noarchsmarty3< anyUNKNOWN
ubuntu24.04noarchsmarty3< anyUNKNOWN
ubuntu16.04noarchsmarty3< anyUNKNOWN
ubuntu23.10noarchsmarty4< anyUNKNOWN
ubuntu24.04noarchsmarty4< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	smarty3	< any	UNKNOWN
ubuntu	20.04	noarch	smarty3	< any	UNKNOWN
ubuntu	22.04	noarch	smarty3	< any	UNKNOWN
ubuntu	23.10	noarch	smarty3	< any	UNKNOWN
ubuntu	24.04	noarch	smarty3	< any	UNKNOWN
ubuntu	16.04	noarch	smarty3	< any	UNKNOWN
ubuntu	23.10	noarch	smarty4	< any	UNKNOWN
ubuntu	24.04	noarch	smarty4	< any	UNKNOWN