CVE-2019-14771 Information

Description

Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 allows the upload of entire-site configuration archives through the user interface or command line. It does not sufficiently check uploaded archives for invalid data potentially allowing non-configuration scripts to be uploaded to the server. (This attack is mitigated by the attacker needing the \Synchronize import and export configuration\ permission a permission that only trusted administrators should be given. Other preventative measures in Backdrop CMS prevent the execution of PHP scripts so another server-side scripting language must be accessible on the server to execute code.)

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://backdropcms.org/security/backdrop-sa-core-2019-012

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8