CVE-2017-14722 : Before version 4.8.2, WordPress allowed a Directory Traversal attack in the Cust

Before version 4.8.2, WordPress allowed a Directory Traversal attack in the Customizer component via a crafted theme filename.

Published 2017-09-23 20:29:00

Updated 2017-11-10 02:29:18

Source MITRE

View at NVD, CVE.org

Vulnerability category: Directory traversal

Products affected by CVE-2017-14722

Wordpress » Wordpress » Version: 4.7.1
cpe:2.3:a:wordpress:wordpress:4.7.1:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.7.2
cpe:2.3:a:wordpress:wordpress:4.7.2:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.7
cpe:2.3:a:wordpress:wordpress:4.7:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.7.5
cpe:2.3:a:wordpress:wordpress:4.7.5:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.8
cpe:2.3:a:wordpress:wordpress:4.8:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.7.3
cpe:2.3:a:wordpress:wordpress:4.7.3:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.7.4
cpe:2.3:a:wordpress:wordpress:4.7.4:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress » Version: 4.8.1
cpe:2.3:a:wordpress:wordpress:4.8.1:*:*:*:*:*:*:*
Matching versions

Top countries where our scanners detected CVE-2017-14722

Top open port discovered on systems with this issue 80

IPs affected by CVE-2017-14722 119

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2017-14722!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

EPSS FAQ

30.55%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

http://www.securityfocus.com/bid/100912

WordPress Prior to 4.8.2 Multiple Input Validation Security Vulnerabilities
Third Party Advisory;VDB Entry

CVEs referencing this url
https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/

News – WordPress 4.8.2 Security and Maintenance Release – WordPress.org
Release Notes;Patch;Vendor Advisory

CVEs referencing this url
https://www.debian.org/security/2017/dsa-3997

Debian -- Security Information -- DSA-3997-1 wordpress

CVEs referencing this url
http://www.securitytracker.com/id/1039553

WordPress Multiple Bugs Let Remote Users Conduct Cross-Site Scripting, SQL Injection, and Open Redirect Attacks - SecurityTracker

CVEs referencing this url
https://wpvulndb.com/vulnerabilities/8912

WordPress 4.4-4.8.1 - Path Traversal in Customizer
Patch;Third Party Advisory
https://core.trac.wordpress.org/changeset/41397

Changeset 41397 – WordPress Trac
Patch;Vendor Advisory

Jump to