CVE-2021-23258

Published: Dec 2, 2021Modified: Nov 21, 2024

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

Authenticated users with Administrator or Developer roles may execute OS commands by SPEL Expression in Spring beans. SPEL Expression does not have security restrictions, which will cause attackers to execute arbitrary commands remotely (RCE).

Affected (1)

Products: Craftercms: Crafter Cms

Craftercms

1 product

Crafter Cms

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Craftercms Crafter Cms	From 3.1.0 to 3.1.12

Related CWEs

CWE-913

Improper Control of Dynamically-Managed Code Resources

The product does not properly restrict reading from or writing to dynamically-managed code resources such as variables, objects, classes, attributes, functions, or executable instructions or statements.

References (2)

https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120101

Source: security@craftersoftware.com

Vendor Advisory

https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120101

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.