CVE-2017-8082 - OpenCVE

concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Concretecms	Concrete Cms

Configuration 1 [-]

cpe:2.3:a:concretecms:concrete_cms:8.1.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt
https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0
https://twitter.com/insecurity/status/856066923146215425

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-04-24T06:12:00

Updated: 2024-08-05T16:27:22.797Z

Reserved: 2017-04-24T00:00:00

Link: CVE-2017-8082

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2017-04-24T06:59:00.570

Modified: 2021-07-15T20:42:17.780

Link: CVE-2017-8082

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-04-24T00:00:00", "descriptions": [{"lang": "en", "value": "concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-04-24T06:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0"}, {"tags": ["x_refsource_MISC"], "url": "http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt"}, {"tags": ["x_refsource_MISC"], "url": "https://twitter.com/insecurity/status/856066923146215425"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-8082", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0", "refsource": "MISC", "url": "https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0"}, {"name": "http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt", "refsource": "MISC", "url": "http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt"}, {"name": "https://twitter.com/insecurity/status/856066923146215425", "refsource": "MISC", "url": "https://twitter.com/insecurity/status/856066923146215425"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T16:27:22.797Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://twitter.com/insecurity/status/856066923146215425"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-8082", "datePublished": "2017-04-24T06:12:00", "dateReserved": "2017-04-24T00:00:00", "dateUpdated": "2024-08-05T16:27:22.797Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:concretecms:concrete_cms:8.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "24E2F1D5-F0C9-41EF-ADB9-52B52F88E01B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide denial of service making the site not accessible to any users or any administrators."}, {"lang": "es", "value": "concrete5 8.1.0 tiene CSRF en el Thumbnail Editor en el File Manager, que permite a atacantes remotos desactivar toda la instalaci\u00f3n simplemente enga\u00f1ando a un administrador para que vea una p\u00e1gina malintencionada que involucre a /tools/required/files/importers/imageeditor?fID=1&imgData= URI. Esto da lugar a una denegaci\u00f3n de servicio en todo el sitio que hace que el sitio no sea accesible a ning\u00fan usuario ni a ning\u00fan administrador."}], "id": "CVE-2017-8082", "lastModified": "2021-07-15T20:42:17.780", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-04-24T06:59:00.570", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "http://zeroday.insecurity.zone/exploits/concrete5_csrf_dos.txt"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://drive.google.com/open?id=0B3vXUYdNMECWZTd3SFRnUjllWk0"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://twitter.com/insecurity/status/856066923146215425"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}