CVE-2024-52291
CVSS V2 None
CVSS V3 None
Description
Craft is a content management system (CMS). A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme (e.g., file://file:////). This enables the attacker to specify sensitive folders as the file system, leading to potential file overwriting through malicious uploads, unauthorized access to sensitive files, and, under certain conditions, remote code execution (RCE) via Server-Side Template Injection (SSTI) payloads. Note that this will only work if you have an authenticated administrator account with allowAdminChanges enabled. This is fixed in 5.4.6 and 4.12.5.
Overview
- CVE ID
- CVE-2024-52291
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-11-13T16:12:14.803Z
- Last Modified Date
- 2024-11-13T18:52:15.774Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://github.com/craftcms/cms/security/advisories/GHSA-jrh5-vhr9-qh7q | x_refsource_CONFIRM |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-52291 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52291 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-11-14 13:24:14 | Added to TrackCVE |