CVE-2018-20924 - OpenCVE

cPanel before 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378).

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:C/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Cpanel	Cpanel

Configuration 1 [-]

OR	cpe:2.3:a:cpanel:cpanel::::::::
	cpe:2.3:a:cpanel:cpanel::::::::
	cpe:2.3:a:cpanel:cpanel::::::::

References

Link	Resource
https://documentation.cpanel.net/display/CL/70+Change+Log	Release Notes Vendor Advisory
https://news.cpanel.com/cpanel-tsr-2018-0002-full-disclosure/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-08-01T15:17:17

Updated: 2019-08-01T15:17:17

Reserved: 2019-07-31T00:00:00

Link: CVE-2018-20924

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-08-01T16:15:13.443

Modified: 2019-08-08T16:57:04.103

Link: CVE-2018-20924

JSON object: View

Redhat Information

No data.

CWE

CWE-287

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*", "matchCriteriaId": "58CDDB1F-721D-4700-BA1C-77A92EDD0B98", "versionEndExcluding": "62.0.42", "versionStartIncluding": "61.9999.55", "vulnerable": true}, {"criteria": "cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*", "matchCriteriaId": "0B35C1C8-1313-4EA7-B7DA-72EF53B9D9AB", "versionEndExcluding": "68.0.33", "versionStartIncluding": "67.9999.64", "vulnerable": true}, {"criteria": "cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*", "matchCriteriaId": "D4705455-5EC7-4866-B39C-9A4A8C7E997C", "versionEndExcluding": "70.0.23", "versionStartIncluding": "69.9999.122", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "cPanel before 70.0.23 allows arbitrary file-read and file-unlink operations via WHM style uploads (SEC-378)."}, {"lang": "es", "value": "cPanel anterior a versi\u00f3n 70.0.23, permite operaciones arbitrarias de lectura de archivos y desvinculaci\u00f3n de archivos por medio de cargas de estilo de WHM (SEC-378)."}], "id": "CVE-2018-20924", "lastModified": "2019-08-08T16:57:04.103", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 7.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:C/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 7.8, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 1.2, "impactScore": 4.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-08-01T16:15:13.443", "references": [{"source": "cve@mitre.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://documentation.cpanel.net/display/CL/70+Change+Log"}, {"source": "nvd@nist.gov", "tags": ["Vendor Advisory"], "url": "https://news.cpanel.com/cpanel-tsr-2018-0002-full-disclosure/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}