CVE-2021-43176 — HIGH (8.8)

Vulnerability Description

The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 takes a user-supplied “action” parameter and appends a .php file extension to locate and load the correct PHP file to implement the API call. Vulnerable versions of GOautodial do not sanitize the user input that specifies the action. This permits an attacker to execute any PHP source file with a .php extension that is present on the disk and readable by the GOautodial web server process. Combined with CVE-2021-43175, it is possible for the attacker to do this without valid credentials. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Goautodial	Goautodial	4
Goautodial	Goautodial Api	2

Related Weaknesses (CWE)

CWE-22 CWE-23

References

https://www.synopsys.com/blogs/software-security/cyrc-advisory-goautodial-vulnerExploitThird Party Advisory
https://www.synopsys.com/blogs/software-security/cyrc-advisory-goautodial-vulnerExploitThird Party Advisory

FAQ

What is CVE-2021-43176?

CVE-2021-43176 is a vulnerability with a CVSS score of 8.8 (HIGH). The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 takes a user-supplied “action” parameter and appends a .php file extension to locate and load the correct PHP file to implement th...

How severe is CVE-2021-43176?

CVE-2021-43176 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-43176?

Check the references section above for vendor advisories and patch information. Affected products include: Goautodial Goautodial, Goautodial Goautodial Api.