CVE-2020-4043 Information

Feb 14, 2021 cve

Description

phpMussel from versions 1.0.0 and less than 1.6.0 has an unserialization vulnerability in PHP’s phar wrapper. Uploading a specially crafted file to an affected version allows arbitrary code execution (discovered tested and confirmed by myself) so the risk factor should be regarded as very high. Newer phpMussel versions don’t use PHP’s phar wrapper and are therefore unaffected. This has been fixed in version 1.6.0.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://github.com/phpMussel/phpMussel/commit/97f25973433921c1f953430f32d3081adc4851a4 https://github.com/phpMussel/phpMussel/issues/167 https://github.com/phpMussel/phpMussel/pull/173 https://github.com/phpMussel/phpMussel/security/advisories/GHSA-qr95-4mq5-r3fh https://github.com/phpMussel/phpMussel/security/policycurrently-known-vulnerabilities

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8

Share on: