CVE-2015-5382 - OpenCVE

program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:S/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Roundcube	Roundcube Webmail Webmail

Configuration 1 [-]

OR	cpe:2.3:a:roundcube:roundcube_webmail::::::::
	cpe:2.3:a:roundcube:roundcube_webmail:1.1.1:::::::*
	cpe:2.3:a:roundcube:webmail:1.1:::::::*
	cpe:2.3:a:roundcube:webmail:1.1:beta::::::
	cpe:2.3:a:roundcube:webmail:1.1:rc::::::

No data.

References

Link	Providers
http://www.openwall.com/lists/oss-security/2015/07/07/2
http://www.openwall.com/lists/oss-security/2015/07/07/3
https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4
https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9
https://github.com/roundcube/roundcubemail/issues/4817
https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-05-23T03:56:00

Updated: 2024-08-06T06:50:00.830Z

Reserved: 2015-07-06T00:00:00

Link: CVE-2015-5382

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2017-05-23T04:29:00.603

Modified: 2018-10-30T16:27:28.983

Link: CVE-2015-5382

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-06-05T00:00:00", "descriptions": [{"lang": "en", "value": "program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-05-23T01:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20150706 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/2"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/roundcube/roundcubemail/issues/4817"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released"}, {"name": "[oss-security] 20150707 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/3"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-5382", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20150706 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2015/07/07/2"}, {"name": "https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9", "refsource": "CONFIRM", "url": "https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9"}, {"name": "https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4", "refsource": "CONFIRM", "url": "https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4"}, {"name": "https://github.com/roundcube/roundcubemail/issues/4817", "refsource": "CONFIRM", "url": "https://github.com/roundcube/roundcubemail/issues/4817"}, {"name": "https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released", "refsource": "CONFIRM", "url": "https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released"}, {"name": "[oss-security] 20150707 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2015/07/07/3"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T06:50:00.830Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20150706 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/roundcube/roundcubemail/issues/4817"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released"}, {"name": "[oss-security] 20150707 Re: CVE request for vulnerabilities fixed in roundcubemail 1.1.2 and 1.0.6", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/3"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-5382", "datePublished": "2017-05-23T03:56:00", "dateReserved": "2015-07-06T00:00:00", "dateUpdated": "2024-08-06T06:50:00.830Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:roundcube:roundcube_webmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "8DD8E608-8097-4332-B75D-75FACA46A6DD", "versionEndIncluding": "1.0.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:roundcube_webmail:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "DDB20CBA-5A6E-4AAA-8ACF-91FF96488F4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:webmail:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "55D54918-3ADC-4424-8F00-2E546803D94C", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:webmail:1.1:beta:*:*:*:*:*:*", "matchCriteriaId": "F43DB37D-E806-4404-B589-5A987E6E0659", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:webmail:1.1:rc:*:*:*:*:*:*", "matchCriteriaId": "A4BB6095-C0D9-4D0A-9E8F-138BA1C19784", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard."}, {"lang": "es", "value": "program/steps/addressbook/photo.inc en Roundcube Webmail, en versiones anteriores a la 1.0.6 y 1.1.x anteriores a la 1.1.2, permitir\u00eda a usuarios remotos autenticados leer ficheros arbitrarios a trav\u00e9s del par\u00e1metro _alt parameter cuando cargamos una vCard."}], "id": "CVE-2015-5382", "lastModified": "2018-10-30T16:27:28.983", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-23T04:29:00.603", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/2"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/07/07/3"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://github.com/roundcube/roundcubemail/commit/6ccd4c54bcc4cb77365defabe8bbe7d10b2620d4"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://github.com/roundcube/roundcubemail/commit/e84fafcec22e7b460db03248dc23ed6b053b15c9"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://github.com/roundcube/roundcubemail/issues/4817"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}