PT-2019-9450 · Kofax · Kofax Front Office Server

Drunkenshells

Published

2019-04-18

Updated

2019-04-19

CVE-2018-17288

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Kofax Front Office Server version 4.1.1.11.0.5212

Description The issue concerns multiple authenticated stored XSS vulnerabilities. These can be exploited via the "Filename" field in the "/Kofax/KFS/ThinClient/document/upload/" endpoint for the Thin Client, or the "DeviceName" field in the "/Kofax/KFS/Admin/DeviceService/device/" endpoint for the Administration Console.

Recommendations For version 4.1.1.11.0.5212, consider disabling the upload functionality in the Thin Client and restricting access to the DeviceService in the Administration Console until a patch is available. Avoid using the "Filename" and "DeviceName" fields in the respective endpoints until the issue is resolved.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-17288

Affected Products

Kofax Front Office Server

PT-2019-9450 · Kofax · Kofax Front Office Server

CVE-2018-17288

Weakness Enumeration

Related Identifiers

Affected Products

References · 3