CVE-2024-52306 - OpenCVE

FileManager provides a Backpack admin interface for files and folder. Prior to 3.0.9, deserialization of untrusted data from the mimes parameter could lead to remote code execution. This vulnerability is fixed in 3.0.9.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Laravel-backpack	File Manager

No data.

No data.

References

Link	Providers
https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b
https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2

History

Wed, 13 Nov 2024 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Laravel-backpack Laravel-backpack file Manager
CPEs		cpe:2.3:a:laravel-backpack:file_manager::::::::
Vendors & Products		Laravel-backpack Laravel-backpack file Manager
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 Nov 2024 15:30:00 +0000

Type	Values Removed	Values Added
Description		FileManager provides a Backpack admin interface for files and folder. Prior to 3.0.9, deserialization of untrusted data from the mimes parameter could lead to remote code execution. This vulnerability is fixed in 3.0.9.
Title		FileManager Deserialization of Untrusted Data
Weaknesses		CWE-502
References		https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2
Metrics		cvssV3_1 `{'score': 7.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-11-13T15:15:38.301Z

Updated: 2024-11-13T20:01:56.693Z

Reserved: 2024-11-06T19:00:26.397Z

Link: CVE-2024-52306

Vulnrichment

Updated: 2024-11-13T20:01:45.770Z

NVD

Status : Awaiting Analysis

Published: 2024-11-13T16:15:20.723

Modified: 2024-11-13T17:01:16.850

Link: CVE-2024-52306

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-52306", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-11-06T19:00:26.397Z", "datePublished": "2024-11-13T15:15:38.301Z", "dateUpdated": "2024-11-13T20:01:56.693Z"}, "containers": {"cna": {"title": "FileManager Deserialization of Untrusted Data", "problemTypes": [{"descriptions": [{"cweId": "CWE-502", "lang": "en", "description": "CWE-502: Deserialization of Untrusted Data", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2"}, {"name": "https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b", "tags": ["x_refsource_MISC"], "url": "https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b"}], "affected": [{"vendor": "Laravel-Backpack", "product": "FileManager", "versions": [{"version": "< 3.0.9", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-11-13T15:15:38.301Z"}, "descriptions": [{"lang": "en", "value": "FileManager provides a Backpack admin interface for files and folder. Prior to 3.0.9, deserialization of untrusted data from the mimes parameter could lead to remote code execution. This vulnerability is fixed in 3.0.9."}], "source": {"advisory": "GHSA-8237-957h-h2c2", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "laravel-backpack", "product": "file_manager", "cpes": ["cpe:2.3:a:laravel-backpack:file_manager:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.0.9", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-13T19:58:23.576021Z", "id": "CVE-2024-52306", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T20:01:56.693Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-52306", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-11-13T19:58:23.576021Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:laravel-backpack:file_manager:*:*:*:*:*:*:*:*"], "vendor": "laravel-backpack", "product": "file_manager", "versions": [{"status": "affected", "version": "0", "lessThan": "3.0.9", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T20:01:45.770Z"}}], "cna": {"title": "FileManager Deserialization of Untrusted Data", "source": {"advisory": "GHSA-8237-957h-h2c2", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Laravel-Backpack", "product": "FileManager", "versions": [{"status": "affected", "version": "< 3.0.9"}]}], "references": [{"url": "https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2", "name": "https://github.com/Laravel-Backpack/FileManager/security/advisories/GHSA-8237-957h-h2c2", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b", "name": "https://github.com/Laravel-Backpack/FileManager/commit/2830498b85e05fb3c92179053b4d7c4a0fdb880b", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "FileManager provides a Backpack admin interface for files and folder. Prior to 3.0.9, deserialization of untrusted data from the mimes parameter could lead to remote code execution. This vulnerability is fixed in 3.0.9."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-502", "description": "CWE-502: Deserialization of Untrusted Data"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-11-13T15:15:38.301Z"}}}, "cveMetadata": {"cveId": "CVE-2024-52306", "state": "PUBLISHED", "dateUpdated": "2024-11-13T20:01:56.693Z", "dateReserved": "2024-11-06T19:00:26.397Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-11-13T15:15:38.301Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}