CVE-2020-11534

Published: Apr 15, 2020Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can craft a malicious .docx file, and exploit the NSFileDownloader function to pass parameters to a binary (such as curl or wget) and remotely execute code on a victim's server.

Affected (1)

Products: Onlyoffice: Document Server

1 product

Document Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Onlyoffice Document Server	Version 5.5.0

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

https://gist.github.com/andrewaeva/beb92d3d2f1c5672dbda5050e323f6a0

Source: cve@mitre.org

Third Party Advisory

https://github.com/ONLYOFFICE/DocumentServer/blob/master/CHANGELOG.md#551

Source: cve@mitre.org

Release NotesThird Party Advisory

https://gist.github.com/andrewaeva/beb92d3d2f1c5672dbda5050e323f6a0

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/ONLYOFFICE/DocumentServer/blob/master/CHANGELOG.md#551

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesThird Party Advisory

Timeline

No history available yet.