CVE-2022-40199 - Vulnerability Details - OpenCVE

Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00437.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Ec-cube	Ec-cube

Configuration 1 [-]

OR	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:-::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p1::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p2::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p3::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p4::::::

No data.

No data.

References

Link	Providers
https://jvn.jp/en/jp/JVN21213852/index.html
https://www.ec-cube.net/info/weakness/20220909/

History

Wed, 21 May 2025 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2022-09-27T01:55:17.000Z

Updated: 2025-05-21T18:23:18.170Z

Reserved: 2022-09-09T00:00:00.000Z

Link: CVE-2022-40199

Vulnrichment

Updated: 2024-08-03T12:14:39.950Z

NVD

Status : Modified

Published: 2022-09-27T23:15:16.207

Modified: 2025-05-21T19:16:00.597

Link: CVE-2022-40199

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "EC-CUBE 3 series and EC-CUBE 4 series", "vendor": "EC-CUBE CO.,LTD.", "versions": [{"status": "affected", "version": "EC-CUBE 3.0.0 to 3.0.18-p4 and EC-CUBE 4.0.0 to 4.1.2"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information."}], "problemTypes": [{"descriptions": [{"description": "Directory traversal", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-09-27T01:55:17.000Z", "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.ec-cube.net/info/weakness/20220909/"}, {"tags": ["x_refsource_MISC"], "url": "https://jvn.jp/en/jp/JVN21213852/index.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vultures@jpcert.or.jp", "ID": "CVE-2022-40199", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "EC-CUBE 3 series and EC-CUBE 4 series", "version": {"version_data": [{"version_value": "EC-CUBE 3.0.0 to 3.0.18-p4 and EC-CUBE 4.0.0 to 4.1.2"}]}}]}, "vendor_name": "EC-CUBE CO.,LTD."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Directory traversal"}]}]}, "references": {"reference_data": [{"name": "https://www.ec-cube.net/info/weakness/20220909/", "refsource": "MISC", "url": "https://www.ec-cube.net/info/weakness/20220909/"}, {"name": "https://jvn.jp/en/jp/JVN21213852/index.html", "refsource": "MISC", "url": "https://jvn.jp/en/jp/JVN21213852/index.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T12:14:39.950Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.ec-cube.net/info/weakness/20220909/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://jvn.jp/en/jp/JVN21213852/index.html"}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-05-21T18:22:17.185316Z", "id": "CVE-2022-40199", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T18:23:18.170Z"}}]}, "cveMetadata": {"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "cveId": "CVE-2022-40199", "datePublished": "2022-09-27T01:55:17.000Z", "dateReserved": "2022-09-09T00:00:00.000Z", "dateUpdated": "2025-05-21T18:23:18.170Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.ec-cube.net/info/weakness/20220909/", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://jvn.jp/en/jp/JVN21213852/index.html", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T12:14:39.950Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-40199", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-05-21T18:22:17.185316Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T18:22:46.008Z"}}], "cna": {"affected": [{"vendor": "EC-CUBE CO.,LTD.", "product": "EC-CUBE 3 series and EC-CUBE 4 series", "versions": [{"status": "affected", "version": "EC-CUBE 3.0.0 to 3.0.18-p4 and EC-CUBE 4.0.0 to 4.1.2"}]}], "references": [{"url": "https://www.ec-cube.net/info/weakness/20220909/", "tags": ["x_refsource_MISC"]}, {"url": "https://jvn.jp/en/jp/JVN21213852/index.html", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Directory traversal"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2022-09-27T01:55:17.000Z"}, "x_legacyV4Record": {"affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "EC-CUBE 3.0.0 to 3.0.18-p4 and EC-CUBE 4.0.0 to 4.1.2"}]}, "product_name": "EC-CUBE 3 series and EC-CUBE 4 series"}]}, "vendor_name": "EC-CUBE CO.,LTD."}]}}, "data_type": "CVE", "references": {"reference_data": [{"url": "https://www.ec-cube.net/info/weakness/20220909/", "name": "https://www.ec-cube.net/info/weakness/20220909/", "refsource": "MISC"}, {"url": "https://jvn.jp/en/jp/JVN21213852/index.html", "name": "https://jvn.jp/en/jp/JVN21213852/index.html", "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Directory traversal"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2022-40199", "STATE": "PUBLIC", "ASSIGNER": "vultures@jpcert.or.jp"}}}}, "cveMetadata": {"cveId": "CVE-2022-40199", "state": "PUBLISHED", "dateUpdated": "2025-05-21T18:23:18.170Z", "dateReserved": "2022-09-09T00:00:00.000Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2022-09-27T01:55:17.000Z", "assignerShortName": "jpcert"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CB1CDC4-2EB3-4003-B9C2-A2B0819685C4", "versionEndExcluding": "3.0.18", "versionStartIncluding": "3.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "matchCriteriaId": "D8AAB855-540E-4D14-9BDD-AA377E0EB91A", "versionEndIncluding": "4.1.2", "versionStartIncluding": "4.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:-:*:*:*:*:*:*", "matchCriteriaId": "8D6A3FBD-7161-461D-B165-E3BCA42BBB2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p1:*:*:*:*:*:*", "matchCriteriaId": "10F6D9C1-B4F3-44D8-B266-787DA62228E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p2:*:*:*:*:*:*", "matchCriteriaId": "B10AA450-F786-4AFD-9F26-9B2E2D57C5C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p3:*:*:*:*:*:*", "matchCriteriaId": "8D30A28C-609A-4B6F-B257-7A577133A9FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p4:*:*:*:*:*:*", "matchCriteriaId": "7530D411-D883-48E4-8D3F-6E6AEF7398E8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product's directory structure information."}, {"lang": "es", "value": "Una vulnerabilidad de Salto de Directorio en las series EC-CUBE 3 (EC-CUBE versiones 3.0.0 a 3.0.18-p4 ) y EC-CUBE 4 (EC-CUBE versiones 4.0.0 a 4.1.2) permite a un atacante remoto autenticado con privilegio administrativo obtener la informaci\u00f3n de la estructura de directorios del producto"}], "id": "CVE-2022-40199", "lastModified": "2025-05-21T19:16:00.597", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2022-09-27T23:15:16.207", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/jp/JVN21213852/index.html"}, {"source": "vultures@jpcert.or.jp", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.ec-cube.net/info/weakness/20220909/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://jvn.jp/en/jp/JVN21213852/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.ec-cube.net/info/weakness/20220909/"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-22"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}