CVE-2020-5225
Last modified
CVE-2020-5225 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the report identifier obtained from the request. EPSS estimates a 0.59% chance of exploitation in the next 30 days.
Description
Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the report identifier obtained from the request. This allows an attacker, under specific circumstances, to inject new log lines by manually crafting this report ID. When configured to use the file logging handler, SimpleSAMLphp will output all its logs by appending each log line to a given file. Since the reportID parameter received in a request sent to www/errorreport.php was not properly sanitized, it was possible to inject newline characters into it, effectively allowing a malicious user to inject new log lines with arbitrary content.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Simplesamlphp | Simplesamlphp | < 1.18.4 |
References
- https://simplesamlphp.org/security/202001-02Vendor Advisory
- https://simplesamlphp.org/security/202001-02Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-5225?
How severe is CVE-2020-5225?
How do I fix CVE-2020-5225?
Are you affected by CVE-2020-5225?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST