CVE-2022-2441 — HIGH (8.8) — White Hats Nepal

Q: How severe is CVE-2022-2441?

CVE-2022-2441 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-2441?

Check the references section above for vendor advisories and patch information. Affected products include: Orangelab Imagemagick Engine.

Vulnerability Description

The ImageMagick Engine plugin for WordPress is vulnerable to remote code execution via the 'cli_path' parameter in versions up to, and including 1.7.5. This makes it possible for unauthenticated users to run arbitrary commands leading to remote command execution, granted they can trick a site administrator into performing an action such as clicking on a link. This makes it possible for an attacker to create and or modify files hosted on the server which can easily grant attackers backdoor access to the affected server.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Orangelab	Imagemagick Engine	<= 1.7.5

Related Weaknesses (CWE)

CWE-352

References

https://github.com/orangelabweb/imagemagick-engine/blob/1.7.4/imagemagick-enginePatch
https://github.com/orangelabweb/imagemagick-engine/blob/v.1.7.2/imagemagick-engiPatch
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newPatch
https://www.exploit-db.com/exploits/51025ExploitThird Party AdvisoryVDB Entry
https://www.wordfence.com/threat-intel/vulnerabilities/id/b1f17a83-1df0-44fe-bd8Third Party Advisory
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-2441Third Party Advisory
https://github.com/orangelabweb/imagemagick-engine/blob/1.7.4/imagemagick-enginePatch
https://github.com/orangelabweb/imagemagick-engine/blob/v.1.7.2/imagemagick-engiPatch
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&newPatch
https://www.exploit-db.com/exploits/51025ExploitThird Party AdvisoryVDB Entry
https://www.wordfence.com/threat-intel/vulnerabilities/id/b1f17a83-1df0-44fe-bd8Third Party Advisory
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-2441Third Party Advisory

FAQ

What is CVE-2022-2441?

CVE-2022-2441 is a vulnerability with a CVSS score of 8.8 (HIGH). The ImageMagick Engine plugin for WordPress is vulnerable to remote code execution via the 'cli_path' parameter in versions up to, and including 1.7.5. This makes it possible for unauthenticated users...

How severe is CVE-2022-2441?

CVE-2022-2441 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-2441?

Check the references section above for vendor advisories and patch information. Affected products include: Orangelab Imagemagick Engine.