CVE-2017-6922 : In Drupal core 8.x prior to 8.3.4 and Drupal core 7.x prior to 7.56; Private fil

In Drupal core 8.x prior to 8.3.4 and Drupal core 7.x prior to 7.56; Private files that have been uploaded by an anonymous user but not permanently attached to content on the site should only be visible to the anonymous user that uploaded them, rather than all anonymous users. Drupal core did not previously provide this protection, allowing an access bypass vulnerability to occur. This issue is mitigated by the fact that in order to be affected, the site must allow anonymous users to upload files into a private file system.

Published 2019-01-22 15:29:00

Updated 2019-10-09 23:29:22

Source Drupal.org

View at NVD, CVE.org

Products affected by CVE-2017-6922

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Drupal » Drupal
Versions from including (>=) 7.0 and before (<) 7.56
cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*
Matching versions
Drupal » Drupal
Versions from including (>=) 8.0.0 and before (<) 8.3.4
cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-6922

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 56 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-6922

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:P/I:N/A:N	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
N/A	NONE	CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:N	0.1	N/A	Drupal.org
Attack Vector: Physical Attack Complexity: High Privileges Required: High User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: None
6.5	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2017-6922

CWE-552 Files or Directories Accessible to External Parties

The product makes files or directories accessible to unauthorized actors, even though they should not be.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-6922

http://www.securitytracker.com/id/1038781

Drupal Bugs Let Remote Users Access Certain Uploaded Files and Execute Arbitrary Code - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
https://www.debian.org/security/2017/dsa-3897

Debian -- Security Information -- DSA-3897-1 drupal7
Third Party Advisory
https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple

Drupal Core - Multiple Vulnerabilities - SA-CORE-2017-003 | Drupal.org
Patch;Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/99219

Drupal Core CVE-2017-6922 Access Bypass Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2017-6922

Products affected by CVE-2017-6922

Exploit prediction scoring system (EPSS) score for CVE-2017-6922

CVSS scores for CVE-2017-6922

CWE ids for CVE-2017-6922

References for CVE-2017-6922