Vulnerability Description
In Pimcore before 5.7.1, an attacker with limited privileges can trigger execution of a .phar file via a phar:// URL in a filename parameter, because PHAR uploads are not blocked and are reachable within the phar://../../../../../../../../var/www/html/web/var/assets/ directory, a different vulnerability than CVE-2019-10867 and CVE-2019-16318.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pimcore | Pimcore | < 5.7.1 |
Related Weaknesses (CWE)
References
- https://github.com/pimcore/pimcore/commit/6ee5d8536d0802e377594cbe39083e822710aaPatch
- https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-451599Third Party Advisory
- https://github.com/pimcore/pimcore/commit/6ee5d8536d0802e377594cbe39083e822710aaPatch
- https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-451599Third Party Advisory
FAQ
What is CVE-2019-16317?
CVE-2019-16317 is a vulnerability with a CVSS score of 8.8 (HIGH). In Pimcore before 5.7.1, an attacker with limited privileges can trigger execution of a .phar file via a phar:// URL in a filename parameter, because PHAR uploads are not blocked and are reachable wit...
How severe is CVE-2019-16317?
CVE-2019-16317 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-16317?
Check the references section above for vendor advisories and patch information. Affected products include: Pimcore Pimcore.