CVE-2020-4043 — HIGH (7.7) — White Hats Nepal

Q: How severe is CVE-2020-4043?

CVE-2020-4043 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-4043?

Check the references section above for vendor advisories and patch information. Affected products include: Phpmussel Project Phpmussel.

Vulnerability Description

phpMussel from versions 1.0.0 and less than 1.6.0 has an unserialization vulnerability in PHP's phar wrapper. Uploading a specially crafted file to an affected version allows arbitrary code execution (discovered, tested, and confirmed by myself), so the risk factor should be regarded as very high. Newer phpMussel versions don't use PHP's phar wrapper, and are therefore unaffected. This has been fixed in version 1.6.0.

CVSS Score

7.7

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Phpmussel Project	Phpmussel	>= 1.0.0, < 1.6.0

Related Weaknesses (CWE)

CWE-502

References

https://github.com/phpMussel/phpMussel/commit/97f25973433921c1f953430f32d3081adcPatchRelease NotesThird Party Advisory
https://github.com/phpMussel/phpMussel/issues/167PatchThird Party Advisory
https://github.com/phpMussel/phpMussel/pull/173PatchThird Party Advisory
https://github.com/phpMussel/phpMussel/security/advisories/GHSA-qr95-4mq5-r3fhMitigationThird Party Advisory
https://github.com/phpMussel/phpMussel/security/policy#currently-known-vulnerabiThird Party Advisory
https://github.com/phpMussel/phpMussel/commit/97f25973433921c1f953430f32d3081adcPatchRelease NotesThird Party Advisory
https://github.com/phpMussel/phpMussel/issues/167PatchThird Party Advisory
https://github.com/phpMussel/phpMussel/pull/173PatchThird Party Advisory
https://github.com/phpMussel/phpMussel/security/advisories/GHSA-qr95-4mq5-r3fhMitigationThird Party Advisory
https://github.com/phpMussel/phpMussel/security/policy#currently-known-vulnerabiThird Party Advisory

FAQ

What is CVE-2020-4043?

CVE-2020-4043 is a vulnerability with a CVSS score of 7.7 (HIGH). phpMussel from versions 1.0.0 and less than 1.6.0 has an unserialization vulnerability in PHP's phar wrapper. Uploading a specially crafted file to an affected version allows arbitrary code execution ...

How severe is CVE-2020-4043?

CVE-2020-4043 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-4043?

Check the references section above for vendor advisories and patch information. Affected products include: Phpmussel Project Phpmussel.