Vulnerability Description
Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is located under the /WorkArea/ path, which is forbidden (normally available exclusively for local admins).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Episerver | Ektron Cms | 9.00 |
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2018/Oct/15ExploitMailing ListMitigation
- https://github.com/alt3kx/CVE-2018-12596ExploitPatchThird Party Advisory
- https://medium.com/%40alt3kx/ektron-content-management-system-cms-9-20-sp2-remot
- https://www.exploit-db.com/exploits/45577/ExploitMitigationPatch
- http://seclists.org/fulldisclosure/2018/Oct/15ExploitMailing ListMitigation
- https://github.com/alt3kx/CVE-2018-12596ExploitPatchThird Party Advisory
- https://medium.com/%40alt3kx/ektron-content-management-system-cms-9-20-sp2-remot
- https://www.exploit-db.com/exploits/45577/ExploitMitigationPatch
FAQ
What is CVE-2018-12596?
CVE-2018-12596 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is l...
How severe is CVE-2018-12596?
CVE-2018-12596 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-12596?
Check the references section above for vendor advisories and patch information. Affected products include: Episerver Ektron Cms.