PT-2020-9827 · Cybele · Thinfinity Virtualui

Tom Jackson

Published

2020-06-04

Updated

2021-07-21

CVE-2019-16385

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Cybele Thinfinity VirtualUI version 2.5.17.2

Description The issue allows HTTP response splitting via the mimetype parameter within a PDF viewer request. This can be exploited by loading an application request to view a PDF containing a malicious payload, resulting in a reflected XSS payload being executed. For example, an attack could be demonstrated using a request like 'example.pdf?mimetype=' substring.

Recommendations For Cybele Thinfinity VirtualUI version 2.5.17.2, consider restricting access to the PDF viewer request or disabling the mimetype parameter to minimize the risk of exploitation until a patch is available. Avoid using the mimetype parameter in the affected API endpoint until the issue is resolved.

Exploit

Fix

Special Elements Injection

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-79

Related Identifiers

CVE-2019-16385

Affected Products

Thinfinity Virtualui

PT-2020-9827 · Cybele · Thinfinity Virtualui

CVE-2019-16385

Weakness Enumeration

Related Identifiers

Affected Products

References · 3