CVE-2015-8005

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail ImageMagick command line argument, which allows remote attackers to obtain the installation path by reading the metadata of a PNG thumbnail file.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.securitytracker.com/id/1034028
https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html	Patch Vendor Advisory
https://phabricator.wikimedia.org/T108616	Vendor Advisory
http://www.securitytracker.com/id/1034028
https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html	Patch Vendor Advisory
https://phabricator.wikimedia.org/T108616	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mediawiki:mediawiki::::::::
	cpe:2.3:a:mediawiki:mediawiki:1.24.0:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.24.1:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.24.2:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.24.3:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.25.0:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.25.1:::::::*
	cpe:2.3:a:mediawiki:mediawiki:1.25.2:::::::*

History

21 Nov 2024, 02:37

Type	Values Removed	Values Added
References	~~() http://www.securitytracker.com/id/1034028 -~~	() http://www.securitytracker.com/id/1034028 -
References	~~() https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html - Patch, Vendor Advisory~~	() https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html - Patch, Vendor Advisory
References	~~() https://phabricator.wikimedia.org/T108616 - Vendor Advisory~~	() https://phabricator.wikimedia.org/T108616 - Vendor Advisory

Information

Published : 2015-11-09 18:59

Updated : 2024-11-21 02:37

NVD link : CVE-2015-8005

Mitre link : CVE-2015-8005

CVE.ORG link : CVE-2015-8005

JSON object : View

Products Affected

mediawiki

mediawiki

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2015-8005", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-11-09T18:59:04.883", "references": [{"url": "http://www.securitytracker.com/id/1034028", "source": "cve@mitre.org"}, {"url": "https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://phabricator.wikimedia.org/T108616", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1034028", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-October/000181.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://phabricator.wikimedia.org/T108616", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 uses the thumbnail ImageMagick command line argument, which allows remote attackers to obtain the installation path by reading the metadata of a PNG thumbnail file."}, {"lang": "es", "value": "MediaWiki en versiones anteriores a 1.23.11, 1.24.x en versiones anteriores a 1.24.4 y 1.25.x en versiones anteriores a 1.25.3 utiliza el argumento de l\u00ednea de comando thumbnail ImageMagick, lo que permite atacantes remotos obtener la ruta de instalaci\u00f3n leyendo los metadatos de un archivo thumbnail PNG."}], "lastModified": "2024-11-21T02:37:49.897", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE35D692-87E9-4982-AA23-27EBD5E5EEE1", "versionEndIncluding": "1.23.10"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.24.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B21EB21-AE87-48BF-B4A1-5E63A2E116B4"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.24.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6C00423-B3FE-485A-9014-22F409DBD377"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.24.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E90C95FB-71CA-4CA1-935D-58A08244A81F"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.24.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DDBD41F-C2D5-4D7C-B069-FBC2C8EBB81C"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.25.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9129F374-93CB-43CE-A3B2-DB6483514F32"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.25.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE125142-10A2-4ACF-9BA4-44E63C1E5DB6"}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:1.25.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF21D6EE-CEAC-42A7-99B6-D9D033E1FEC6"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}