CVE-2018-10092

The admin panel in Dolibarr before 7.0.2 might allow remote attackers to execute arbitrary commands by leveraging support for updating the antivirus command and parameters used to scan file uploads.

CVSS v3 8.0 HIGH
CVSS v2.0 6.0 MEDIUM

8.0^/10

CVSS v3 : HIGH

Vector : AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Exploitability : 2.1 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability : 6.8 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.openwall.com/lists/oss-security/2018/05/21/2	Exploit Mailing List Technical Description Third Party Advisory
https://github.com/Dolibarr/dolibarr/blob/7.0.2/ChangeLog	Release Notes
https://github.com/Dolibarr/dolibarr/commit/5d121b2d3ae2a95abebc9dc31e4782cbc61a1f39	Patch
https://sysdream.com/news/lab/2018-05-21-cve-2018-10092-dolibarr-admin-panel-authenticated-remote-code-execution-rce-vulnerability/	Exploit Technical Description Third Party Advisory
http://www.openwall.com/lists/oss-security/2018/05/21/2	Exploit Mailing List Technical Description Third Party Advisory
https://github.com/Dolibarr/dolibarr/blob/7.0.2/ChangeLog	Release Notes
https://github.com/Dolibarr/dolibarr/commit/5d121b2d3ae2a95abebc9dc31e4782cbc61a1f39	Patch
https://sysdream.com/news/lab/2018-05-21-cve-2018-10092-dolibarr-admin-panel-authenticated-remote-code-execution-rce-vulnerability/	Exploit Technical Description Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:dolibarr:dolibarr:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-05-22 20:29

Updated : 2024-11-21 03:40

NVD link : CVE-2018-10092

Mitre link : CVE-2018-10092

CVE.ORG link : CVE-2018-10092

JSON object : View

Products Affected

dolibarr

dolibarr

CWE

CWE-862

Missing Authorization

{"id": "CVE-2018-10092", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.1}]}, "published": "2018-05-22T20:29:01.117", "references": [{"url": "http://www.openwall.com/lists/oss-security/2018/05/21/2", "tags": ["Exploit", "Mailing List", "Technical Description", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/Dolibarr/dolibarr/blob/7.0.2/ChangeLog", "tags": ["Release Notes"], "source": "cve@mitre.org"}, {"url": "https://github.com/Dolibarr/dolibarr/commit/5d121b2d3ae2a95abebc9dc31e4782cbc61a1f39", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "https://sysdream.com/news/lab/2018-05-21-cve-2018-10092-dolibarr-admin-panel-authenticated-remote-code-execution-rce-vulnerability/", "tags": ["Exploit", "Technical Description", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2018/05/21/2", "tags": ["Exploit", "Mailing List", "Technical Description", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/Dolibarr/dolibarr/blob/7.0.2/ChangeLog", "tags": ["Release Notes"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/Dolibarr/dolibarr/commit/5d121b2d3ae2a95abebc9dc31e4782cbc61a1f39", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://sysdream.com/news/lab/2018-05-21-cve-2018-10092-dolibarr-admin-panel-authenticated-remote-code-execution-rce-vulnerability/", "tags": ["Exploit", "Technical Description", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "The admin panel in Dolibarr before 7.0.2 might allow remote attackers to execute arbitrary commands by leveraging support for updating the antivirus command and parameters used to scan file uploads."}, {"lang": "es", "value": "El panel de administrador en Dolibarr en versiones anteriores a la 7.0.2 podr\u00eda permitir que atacantes remotos ejecuten comandos arbitrarios aprovechando el soporte para actualizar el comando y los par\u00e1metros del antivirus empleados para escanear las subidas de archivos."}], "lastModified": "2024-11-21T03:40:48.363", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dolibarr:dolibarr:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "846C6EFB-F67D-4C61-9E8B-7CEE5B97AF08", "versionEndExcluding": "7.0.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}