Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is located under the /WorkArea/ path, which is forbidden (normally available exclusively for local admins).
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2018/Oct/15 | Exploit Mitigation Mailing List Patch Third Party Advisory |
https://github.com/alt3kx/CVE-2018-12596 | Exploit Patch Third Party Advisory |
https://medium.com/%40alt3kx/ektron-content-management-system-cms-9-20-sp2-remote-re-enabling-users-cve-2018-12596-bdf1e3a05158 | |
https://www.exploit-db.com/exploits/45577/ | Exploit Mitigation Patch Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-10-10T21:00:00
Updated: 2018-10-12T09:57:01
Reserved: 2018-06-20T00:00:00
Link: CVE-2018-12596
JSON object: View
NVD Information
Status : Modified
Published: 2018-10-10T21:29:01.430
Modified: 2023-11-07T02:52:21.720
Link: CVE-2018-12596
JSON object: View
Redhat Information
No data.
CWE