CVE-2018-14857

Published: Aug 6, 2018Modified: Nov 21, 2024

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Unrestricted file upload (with remote code execution) in require/mail/NotificationMail.php in Webconsole in OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions other than .html are permitted.

Affected (1)

Products: Ocsinventory Ng: Ocs Inventory Server

Ocsinventory Ng

1 product

Ocs Inventory Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ocsinventory Ng Ocs Inventory Server	Up to 2.5

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (6)

http://seclists.org/fulldisclosure/2018/Aug/6

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.securitytracker.com/id/1041418

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://github.com/OCSInventory-NG/OCSInventory-ocsreports/commit/cc572819e373f7ff81dec61591b6f465b43c5515

Source: cve@mitre.org

Third Party Advisory

http://seclists.org/fulldisclosure/2018/Aug/6

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.securitytracker.com/id/1041418

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://github.com/OCSInventory-NG/OCSInventory-ocsreports/commit/cc572819e373f7ff81dec61591b6f465b43c5515

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.