CVE-2024-28116

{"id": "CVE-2024-28116", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2024-03-21T22:15:11.577", "references": [{"url": "https://github.com/getgrav/grav/commit/4149c81339274130742831422de2685f298f3a6e", "source": "security-advisories@github.com"}, {"url": "https://github.com/getgrav/grav/security/advisories/GHSA-c9gp-64c4-2rrh", "source": "security-advisories@github.com"}, {"url": "https://github.com/getgrav/grav/commit/4149c81339274130742831422de2685f298f3a6e", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/getgrav/grav/security/advisories/GHSA-c9gp-64c4-2rrh", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-94"}, {"lang": "en", "value": "CWE-1336"}]}], "descriptions": [{"lang": "en", "value": "Grav is an open-source, flat-file content management system. Grav CMS prior to version 1.7.45 is vulnerable to a Server-Side Template Injection (SSTI), which allows any authenticated user (editor permissions are sufficient) to execute arbitrary code on the remote server bypassing the existing security sandbox. Version 1.7.45 contains a patch for this issue."}, {"lang": "es", "value": "Grav es un sistema de gesti\u00f3n de contenidos de archivos planos de c\u00f3digo abierto. Grav CMS anterior a la versi\u00f3n 1.7.45 es vulnerable a una inyecci\u00f3n de plantilla del lado del servidor (SSTI), que permite a cualquier usuario autenticado (los permisos del editor son suficientes) ejecutar c\u00f3digo arbitrario en el servidor remoto sin pasar por el entorno limitado de seguridad existente. La versi\u00f3n 1.7.45 contiene un parche para este problema."}], "lastModified": "2024-11-21T09:05:51.040", "sourceIdentifier": "security-advisories@github.com"}