CVE-2023-5524 - Vulnerability Details - OpenCVE

Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows

Remote Code Execution

via specific file types

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0085.

Key SSVC decision points have not yet been added.

Vendors	Products
M-files	Web Companion

Configuration 1 [-]

OR	cpe:2.3:a:m-files:web_companion:::::lts:::*
	cpe:2.3:a:m-files:web_companion:::::-:::*
	cpe:2.3:a:m-files:web_companion:23.8:-:::lts:::*

No data.

No data.

References

Link	Providers
https://product.m-files.com/security-advisories/cve-2023-5524/
https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/

History

Wed, 28 Aug 2024 19:30:00 +0000

Type	Values Removed	Values Added
References		https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/

Wed, 28 Aug 2024 09:45:00 +0000

Type	Values Removed	Values Added
References	https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/

Wed, 28 Aug 2024 08:30:00 +0000

Type	Values Removed	Values Added
Description	Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows Remote Code Execution via specific file types	Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows Remote Code Execution via specific file types
References		https://product.m-files.com/security-advisories/cve-2023-5524/

MITRE

Status: PUBLISHED

Assigner: M-Files Corporation

Published: 2023-10-20T06:41:56.499Z

Updated: 2024-08-28T18:32:12.041Z

Reserved: 2023-10-11T13:31:23.607Z

Link: CVE-2023-5524

Vulnrichment

Updated: 2024-08-02T07:59:44.751Z

NVD

Status : Modified

Published: 2023-10-20T07:15:17.717

Modified: 2024-11-21T08:41:56.367

Link: CVE-2023-5524

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-5524", "assignerOrgId": "bcf7a16e-bfdc-46e4-9e42-4187da3f4410", "state": "PUBLISHED", "assignerShortName": "M-Files Corporation", "dateReserved": "2023-10-11T13:31:23.607Z", "datePublished": "2023-10-20T06:41:56.499Z", "dateUpdated": "2024-08-28T18:32:12.041Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Web Companion", "vendor": "M-Files", "versions": [{"lessThan": "23.10", "status": "affected", "version": "23.3", "versionType": "custom"}, {"status": "unaffected", "version": "23.8 LTS SR1"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Anton Keskisaari / Second Nature Security"}], "datePublic": "2023-10-20T12:35:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows \n\n<span style=\"background-color: rgb(255, 255, 255);\">Remote Code Execution</span>\n\n via specific file types<br><br>"}], "value": "Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows \n\nRemote Code Execution\n\n via specific file types"}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "None publicly available"}], "value": "None publicly available"}], "impacts": [{"capecId": "CAPEC-253", "descriptions": [{"lang": "en", "value": "CAPEC-253 Remote Code Inclusion"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "bcf7a16e-bfdc-46e4-9e42-4187da3f4410", "shortName": "M-Files Corporation", "dateUpdated": "2024-08-28T08:23:30.066Z"}, "references": [{"url": "https://product.m-files.com/security-advisories/cve-2023-5524/"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Update to fixed version"}], "value": "Update to fixed version"}], "source": {"defect": ["168541"], "discovery": "EXTERNAL"}, "title": "M-Files Web Companion allows Remote Code Execution for some filetypes", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:59:44.751Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-28T18:31:37.963688Z", "id": "CVE-2023-5524", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T18:32:12.041Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:59:44.751Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-5524", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-08-28T18:31:37.963688Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T18:32:03.271Z"}}], "cna": {"title": "M-Files Web Companion allows Remote Code Execution for some filetypes", "source": {"defect": ["168541"], "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Anton Keskisaari / Second Nature Security"}], "impacts": [{"capecId": "CAPEC-253", "descriptions": [{"lang": "en", "value": "CAPEC-253 Remote Code Inclusion"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "M-Files", "product": "Web Companion", "versions": [{"status": "affected", "version": "23.3", "lessThan": "23.10", "versionType": "custom"}, {"status": "unaffected", "version": "23.8 LTS SR1"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "None publicly available", "supportingMedia": [{"type": "text/html", "value": "None publicly available", "base64": false}]}], "solutions": [{"lang": "en", "value": "Update to fixed version", "supportingMedia": [{"type": "text/html", "value": "Update to fixed version", "base64": false}]}], "datePublic": "2023-10-20T12:35:00.000Z", "references": [{"url": "https://product.m-files.com/security-advisories/cve-2023-5524/"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows \n\nRemote Code Execution\n\n via specific file types", "supportingMedia": [{"type": "text/html", "value": "Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows \n\n<span style=\"background-color: rgb(255, 255, 255);\">Remote Code Execution</span>\n\n via specific file types<br><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "bcf7a16e-bfdc-46e4-9e42-4187da3f4410", "shortName": "M-Files Corporation", "dateUpdated": "2024-08-28T08:23:30.066Z"}}}, "cveMetadata": {"cveId": "CVE-2023-5524", "state": "PUBLISHED", "dateUpdated": "2024-08-28T18:32:12.041Z", "dateReserved": "2023-10-11T13:31:23.607Z", "assignerOrgId": "bcf7a16e-bfdc-46e4-9e42-4187da3f4410", "datePublished": "2023-10-20T06:41:56.499Z", "assignerShortName": "M-Files Corporation"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:m-files:web_companion:*:*:*:*:lts:*:*:*", "matchCriteriaId": "4A13E967-9494-4FA8-AE96-503DACD92325", "versionEndExcluding": "23.8", "vulnerable": true}, {"criteria": "cpe:2.3:a:m-files:web_companion:*:*:*:*:-:*:*:*", "matchCriteriaId": "8442CD82-5B17-4837-831B-BB1F4B4BC333", "versionEndExcluding": "23.10", "versionStartIncluding": "23.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:m-files:web_companion:23.8:-:*:*:lts:*:*:*", "matchCriteriaId": "F039E21F-58D0-4BBC-B41E-EFE922009296", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows \n\nRemote Code Execution\n\n via specific file types"}, {"lang": "es", "value": "Lista negra insuficiente en M-Files Web Companion antes de la versi\u00f3n 23.10 y en las versiones de lanzamiento del servicio LTS anteriores a 23.8 LTS SR1 permite la ejecuci\u00f3n remota de c\u00f3digo a trav\u00e9s de tipos de archivos espec\u00edficos"}], "id": "CVE-2023-5524", "lastModified": "2024-11-21T08:41:56.367", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.5, "impactScore": 6.0, "source": "security@m-files.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-10-20T07:15:17.717", "references": [{"source": "security@m-files.com", "url": "https://product.m-files.com/security-advisories/cve-2023-5524/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2023-5524/"}], "sourceIdentifier": "security@m-files.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "security@m-files.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-434"}], "source": "nvd@nist.gov", "type": "Primary"}]}