CVE-2019-19731

{"id": "CVE-2019-19731", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-12-16T17:15:12.253", "references": [{"url": "http://packetstormsecurity.com/files/155666/Roxy-Fileman-1.4.5-For-.NET-Directory-Traversal.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.roxyfileman.com/download", "tags": ["Release Notes"], "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/155666/Roxy-Fileman-1.4.5-For-.NET-Directory-Traversal.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.roxyfileman.com/download", "tags": ["Release Notes"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Roxy Fileman 1.4.5 for .NET is vulnerable to path traversal. A remote attacker can write uploaded files to arbitrary locations via the RENAMEFILE action. This can be leveraged for code execution by uploading a specially crafted Windows shortcut file and writing the file to the Startup folder (because an incomplete blacklist of file extensions allows Windows shortcut files to be uploaded)."}, {"lang": "es", "value": "Roxy Fileman versi\u00f3n 1.4.5 para .NET es vulnerable a un salto de la ruta. Un atacante remoto puede escribir archivos cargados en ubicaciones arbitrarias por medio de la acci\u00f3n RENAMEFILE. Esto puede ser aprovechado para una ejecuci\u00f3n de c\u00f3digo mediante la carga de un archivo de acceso directo de Windows especialmente dise\u00f1ado y escribiendo el archivo en la carpeta de Inicio (porque una lista negra incompleta de extensiones de archivo permite que archivos de acceso directo de Windows sea cargados)."}], "lastModified": "2024-11-21T04:35:16.340", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:roxyfileman:roxy_fileman:1.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1EB9BDC-7B22-4442-886F-EF28A8A1C9A9"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}