Vulnerability Details : CVE-2017-17672
In vBulletin through 5.3.x, there is an unauthenticated deserialization vulnerability that leads to arbitrary file deletion and, under certain circumstances, code execution, because of unsafe usage of PHP's unserialize() in vB_Library_Template's cacheTemplates() function, which is a publicly exposed API. This is exploited with the templateidlist parameter to ajax/api/template/cacheTemplates.
Products affected by CVE-2017-17672
- cpe:2.3:a:vbulletin:vbulletin:*:*:*:*:*:*:*:*
- cpe:2.3:a:vbulletin:vbulletin:5.0.0:beta_28:*:*:*:*:*:*
- cpe:2.3:a:vbulletin:vbulletin:5.0.0:beta_11:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-17672
0.87%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 83 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-17672
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2017-17672
-
The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-17672
-
https://blogs.securiteam.com/index.php/archives/3573
SSD Advisory – vBulletin cacheTemplates Unauthenticated Remote Arbitrary File Deletion - SSD Secure DisclosureExploit;Third Party Advisory
-
https://www.exploit-db.com/exploits/43362/
vBulletin 5 - 'cacheTemplates' Remote Arbitrary File DeletionExploit;Third Party Advisory;VDB Entry
Jump to