CVE-2020-26174

Published: Dec 18, 2020Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

tangro Business Workflow before 1.18.1 requests a list of allowed filetypes from the server and restricts uploads to the filetypes contained in this list. However, this restriction is enforced in the browser (client-side) and can be circumvented. This allows an attacker to upload any file as an attachment to a workitem.

Affected (1)

Products: Tangro: Business Workflow

1 product

Business Workflow

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tangro Business Workflow	Before 1.18.1

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (4)

https://blog.to.com/advisory-tangro-bwf-1-17-5-multiple-vulnerabilities/

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.tangro.de/

Source: cve@mitre.org

Product

https://blog.to.com/advisory-tangro-bwf-1-17-5-multiple-vulnerabilities/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.tangro.de/

Source: af854a3a-2127-422b-91ae-364da2661108

Product

Timeline

No history available yet.