8.1 - CVE-2023-45868

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2023-45868	First vendor Publication	2023-10-26
Vendor	Cve	Last vendor Modification	2024-02-22

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Overall CVSS Score	8.1
Base Score	8.1	Environmental Score	8.1
impact SubScore	5.2	Temporal Score	8.1
Exploitabality Sub Score	2.8

Attack Vector	Network	Attack Complexity	Low
Privileges Required	Low	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	None	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score	N/A	Attack Range	N/A
Cvss Impact Score	N/A	Attack Complexity	N/A
Cvss Expoit Score	N/A	Authentication	N/A
Calculate full CVSS 2.0 Vectors scores

Detail

The Learning Module in ILIAS 7.25 (2023-09-12 release) allows an attacker (with basic user privileges) to achieve a high-impact Directory Traversal attack on confidentiality and availability. By exploiting this network-based vulnerability, the attacker can move specified directories, normally outside the documentRoot, to a publicly accessible location via the PHP function rename(). This results in a total loss of confidentiality, exposing sensitive resources, and potentially denying access to the affected component and the operating system's components. To exploit this, an attacker must manipulate a POST request during the creation of an exercise unit, by modifying the old_name and new_name parameters via directory traversal. However, it's essential to note that, when exploiting this vulnerability, the specified directory will be relocated from its original location, rendering all files obtained from there unavailable.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45868

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Ilias cpe:2.3:a:ilias:ilias:7.25:::::::*	1

Sources (Detail)

Source	Url
MISC	https://rehmeinfosec.de https://rehmeinfosec.de/labor/cve-2023-45867

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-02-23 00:27:35	Multiple Updates
2023-11-14 21:28:03	Multiple Updates
2023-10-26 21:37:35	Multiple Updates
2023-10-26 21:27:21	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	1
Sources(s)	2

	Related
6.5	CVE-2023-45867
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)