PT-2017-17719 · Enalean · Enalean Tuleap

Egix

Published

2017-10-30

Updated

2017-12-27

CVE-2017-7411

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Enalean Tuleap versions 9.6 and prior

Description The issue exists due to the User::getRecentElements() method using the unserialize() function with a preference value that can be manipulated by malicious users through the REST API interface. This allows an attacker to inject arbitrary PHP objects into the application scope, enabling various attacks, including Remote Code Execution.

Recommendations For Enalean Tuleap versions 9.6 and prior, consider disabling the User::getRecentElements() method or restricting access to the REST API interface until a patch is available. Avoid using the unserialize() function with user-provided input to minimize the risk of exploitation.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2017-7411

Affected Products

Enalean Tuleap

PT-2017-17719 · Enalean · Enalean Tuleap

CVE-2017-7411

Weakness Enumeration

Related Identifiers

Affected Products

References · 9