Vulnerability Description
SilverStripe CMS before 3.6.1 has XSS via an SVG document that is mishandled by (1) the Insert Media option in the content editor or (2) an admin/assets/add pathname, as demonstrated by the admin/pages/edit/EditorToolbar/MediaForm/field/AssetUploadField/upload URI, aka issue SS-2017-017.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Silverstripe | Silverstripe | <= 3.6.0 |
Related Weaknesses (CWE)
References
- http://lists.openwall.net/full-disclosure/2017/09/14/2ExploitMailing ListThird Party Advisory
- https://docs.silverstripe.org/en/3/changelogs/3.6.1Vendor Advisory
- https://github.com/silverstripe/silverstripe-framework/commit/25b77a2ff8deabe8e8Third Party Advisory
- https://github.com/silverstripe/silverstripe-installer/commit/c25478bef75cc54828Third Party Advisory
- http://lists.openwall.net/full-disclosure/2017/09/14/2ExploitMailing ListThird Party Advisory
- https://docs.silverstripe.org/en/3/changelogs/3.6.1Vendor Advisory
- https://github.com/silverstripe/silverstripe-framework/commit/25b77a2ff8deabe8e8Third Party Advisory
- https://github.com/silverstripe/silverstripe-installer/commit/c25478bef75cc54828Third Party Advisory
FAQ
What is CVE-2017-14498?
CVE-2017-14498 is a vulnerability with a CVSS score of 6.1 (MEDIUM). SilverStripe CMS before 3.6.1 has XSS via an SVG document that is mishandled by (1) the Insert Media option in the content editor or (2) an admin/assets/add pathname, as demonstrated by the admin/page...
How severe is CVE-2017-14498?
CVE-2017-14498 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14498?
Check the references section above for vendor advisories and patch information. Affected products include: Silverstripe Silverstripe.