CVE-2015-7774

PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role.

CVSS v2.0 6.5 MEDIUM

6.5^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://jvn.jp/en/jp/JVN25323093/index.html	Vendor Advisory
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000180	Vendor Advisory
http://www.pwebmanager.org/	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:pc-egg:pwebmanager:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:a:pc-egg:pwebmanager:*:*:*:*:*:*:*:*

OR	cpe:2.3:a:php:php:4.4.0:::::::*
	cpe:2.3:a:php:php:4.4.1:::::::*
	cpe:2.3:a:php:php:4.4.2:::::::*
	cpe:2.3:a:php:php:4.4.3:::::::*
	cpe:2.3:a:php:php:4.4.4:::::::*
	cpe:2.3:a:php:php:4.4.5:::::::*
	cpe:2.3:a:php:php:4.4.6:::::::*
	cpe:2.3:a:php:php:4.4.7:::::::*
	cpe:2.3:a:php:php:4.4.8:::::::*
	cpe:2.3:a:php:php:4.4.9:::::::*

History

No history.

Information

Published : 2015-11-14 03:59

Updated : 2024-02-28 15:21

NVD link : CVE-2015-7774

Mitre link : CVE-2015-7774

CVE.ORG link : CVE-2015-7774

JSON object : View

Products Affected

pc-egg

pwebmanager

php

php

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

{"id": "CVE-2015-7774", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-11-14T03:59:08.790", "references": [{"url": "http://jvn.jp/en/jp/JVN25323093/index.html", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000180", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "http://www.pwebmanager.org/", "tags": ["Patch", "Vendor Advisory"], "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role."}, {"lang": "es", "value": "PC-EGG pWebManager en versiones anteriores a 3.3.10 y en versiones anteriores a 2.2.2 para PHP 4.x permite a usuarios remotos autenticados ejecutar comandos del SO arbitrarios aprovechando el rol editor."}], "lastModified": "2015-11-16T19:24:47.543", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pc-egg:pwebmanager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F687D9BB-BF64-4ECA-8503-C37BC55BC0F3", "versionEndIncluding": "3.3.9a"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pc-egg:pwebmanager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26BF4E5C-2F07-4BCC-A526-B08F6E7542C7", "versionEndIncluding": "2.2.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "78B7BA75-2A32-4A8E-ADF8-BCB4FC48CB5C"}, {"criteria": "cpe:2.3:a:php:php:4.4.1:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2BEA491B-77FD-4760-8F6F-3EBC6BD810D9"}, {"criteria": "cpe:2.3:a:php:php:4.4.2:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB25CFBB-347C-479E-8853-F49DD6CBD7D4"}, {"criteria": "cpe:2.3:a:php:php:4.4.3:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4D2937B3-D034-400E-84F5-33833CE3764D"}, {"criteria": "cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "71AEE8B4-FCF8-483B-8D4C-2E80A02E925E"}, {"criteria": "cpe:2.3:a:php:php:4.4.5:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4C2AF1D9-33B6-4B2C-9269-426B6B720164"}, {"criteria": "cpe:2.3:a:php:php:4.4.6:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "84B70263-37AA-4539-A286-12038A3792C6"}, {"criteria": "cpe:2.3:a:php:php:4.4.7:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2E46E4B4-808C-4B47-81D9-EC2B02A5E57B"}, {"criteria": "cpe:2.3:a:php:php:4.4.8:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6FF30D7F-353B-4496-9A89-4EF2BB279E0A"}, {"criteria": "cpe:2.3:a:php:php:4.4.9:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DD97DF34-35AB-4979-96E2-B23DC8556A79"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "vultures@jpcert.or.jp"}