CVE-2023-40035
Last modified
CVE-2023-40035 is a high-severity vulnerability rated 7.2/10 on the CVSS scale. Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. EPSS estimates a 1.91% chance of exploitation in the next 30 days.
Description
Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. This vulnerability can lead to malicious control of vulnerable systems and data exfiltrations. Although the vulnerability is exploitable only in the authenticated users, configuration with ALLOW_ADMIN_CHANGES=true, there is still a potential security threat (Remote Code Execution). This issue has been patched in version 4.4.15 and version 3.8.15.
Metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Craftcms | Craft Cms | >= 3.0.0, < 3.8.15 | — |
| Craftcms | Craft Cms | >= 4.0.0, < 4.4.15 | — |
| Craftcms | Craft Cms | 4.0.0 | Rc1 |
References
- https://github.com/craftcms/cms/releases/tag/3.8.15Release Notes
- https://github.com/craftcms/cms/releases/tag/4.4.15Release Notes
- https://github.com/craftcms/cms/security/advisories/GHSA-44wr-rmwq-3phwExploit, Vendor Advisory
- https://github.com/craftcms/cms/releases/tag/3.8.15Release Notes
- https://github.com/craftcms/cms/releases/tag/4.4.15Release Notes
- https://github.com/craftcms/cms/security/advisories/GHSA-44wr-rmwq-3phwExploit, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-40035?
How severe is CVE-2023-40035?
How do I fix CVE-2023-40035?
Are you affected by CVE-2023-40035?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST