CVE-2019-16318

Published: Sep 14, 2019Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and CVE-2019-16317.

Affected (1)

Products: Pimcore: Pimcore

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Pimcore Pimcore	Before 5.7.1

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (4)

https://github.com/pimcore/pimcore/commit/732f1647cc6e0a29b5b1f5d904b4d726b5e9455f

Source: cve@mitre.org

Patch

https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-451598

Source: cve@mitre.org

Third Party Advisory

https://github.com/pimcore/pimcore/commit/732f1647cc6e0a29b5b1f5d904b4d726b5e9455f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-451598

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.