[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: [FD] [KIS-2020-03] SuiteCRM <= 7.11.11 (action_saveHTMLField) Bean Manipulation Vulnerability
From: Egidio Romano <research () karmainsecurity ! com>
Date: 2020-02-12 19:03:46
Message-ID: b410cf1c9bd4703eb77a7603c0979c64 () karmainsecurity ! com
[Download RAW message or body]
--------------------------------------------------------------------------
SuiteCRM <= 7.11.11 (action_saveHTMLField) Bean Manipulation
Vulnerability
--------------------------------------------------------------------------
[-] Software Link:
https://suitecrm.com/
[-] Affected Versions:
Version 7.11.11 and prior versions.
[-] Vulnerability Description:
The vulnerability exists because the
"HomeController::action_saveHTMLField()" method allows
to create new beans or modify arbitrary beans' fields. This can result
in second-order SQL
Injections or PHP Object Injection attacks.
[-] Solution:
No official solution is currently available.
[-] Disclosure Timeline:
[19/09/2019] - Vendor notified
[20/09/2019] - Vendor acknowledgement
[12/11/2019] - Vendor contacted again asking for updates, no response
[20/01/2020] - Vendor notified about public disclosure intention, no
response
[07/02/2020] - CVE number assigned
[12/02/2020] - Public disclosure
[-] CVE Reference:
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2020-8802 to this vulnerability.
[-] Credits:
Vulnerability discovered by Egidio Romano.
[-] Original Advisory:
http://karmainsecurity.com/KIS-2020-03
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic