CVE-2024-27115

A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool. With this vulnerability, an attacker can upload executable files that are moved to a publicly accessible folder before verifying any requirements. This leads to the possibility of execution of code on the underlying system when the file is triggered. The vulnerability has been remediated in version 1.52.02.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://csirt.divd.nl/CVE-2024-27115	Broken Link

Configurations

Configuration 1 (hide)

cpe:2.3:a:soplanning:soplanning:*:*:*:*:*:*:*:*

History

18 Sep 2024, 20:32

Type	Values Removed	Values Added
Summary		(es) Se ha detectado una vulnerabilidad de ejecución remota de código (RCE) no autenticada en la herramienta de planificación en línea SO Planning. Con esta vulnerabilidad, un atacante puede cargar archivos ejecutables que se mueven a una carpeta de acceso público antes de verificar los requisitos. Esto genera la posibilidad de ejecución de código en el sistema subyacente cuando se activa el archivo. La vulnerabilidad se ha solucionado en la versión 1.52.02.
First Time		Soplanning Soplanning soplanning
References	~~() https://csirt.divd.nl/CVE-2024-27115 -~~	() https://csirt.divd.nl/CVE-2024-27115 - Broken Link
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
CPE		cpe:2.3:a:soplanning:soplanning::::::::

11 Sep 2024, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-11 14:15

Updated : 2024-09-18 20:32

NVD link : CVE-2024-27115

Mitre link : CVE-2024-27115

CVE.ORG link : CVE-2024-27115

JSON object : View

Products Affected

soplanning

soplanning

CWE

CWE-434

Unrestricted Upload of File with Dangerous Type

{"id": "CVE-2024-27115", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}], "cvssMetricV40": [{"type": "Secondary", "source": "csirt@divd.nl", "cvssData": {"safety": "NEGLIGIBLE", "version": "4.0", "recovery": "IRRECOVERABLE", "baseScore": 10.0, "automatable": "YES", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:I/V:C/RE:M/U:Red", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "RED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "modifiedAttackVector": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subsequentSystemIntegrity": "HIGH", "vulnerableSystemIntegrity": "HIGH", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "confidentialityRequirements": "NOT_DEFINED", "vulnerabilityResponseEffort": "MODERATE", "subsequentSystemAvailability": "HIGH", "vulnerableSystemAvailability": "HIGH", "subsequentSystemConfidentiality": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED"}}]}, "published": "2024-09-11T14:15:13.147", "references": [{"url": "https://csirt.divd.nl/CVE-2024-27115", "tags": ["Broken Link"], "source": "csirt@divd.nl"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-434"}]}, {"type": "Secondary", "source": "csirt@divd.nl", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool. With this vulnerability, an attacker can upload executable files that are moved to a publicly accessible folder before verifying any requirements. This leads to the possibility of execution of code on the underlying system when the file is triggered. The vulnerability has been remediated in version 1.52.02."}, {"lang": "es", "value": "Se ha detectado una vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo (RCE) no autenticada en la herramienta de planificaci\u00f3n en l\u00ednea SO Planning. Con esta vulnerabilidad, un atacante puede cargar archivos ejecutables que se mueven a una carpeta de acceso p\u00fablico antes de verificar los requisitos. Esto genera la posibilidad de ejecuci\u00f3n de c\u00f3digo en el sistema subyacente cuando se activa el archivo. La vulnerabilidad se ha solucionado en la versi\u00f3n 1.52.02."}], "lastModified": "2024-09-18T20:32:26.717", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:soplanning:soplanning:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37301719-C761-4C67-9214-CA5AC8747913", "versionEndExcluding": "1.52.02"}], "operator": "OR"}]}], "sourceIdentifier": "csirt@divd.nl"}