Vulnerability Details : CVE-2017-7414
In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition 5.x through 5.2.17, OS Command Injection can occur if the user has PGP features enabled in the user's preferences, and has enabled the "Should PGP signed messages be automatically verified when viewed?" preference. To exploit this vulnerability, an attacker can send a PGP signed email (that is maliciously crafted) to the Horde user, who then must either view or preview it.
Products affected by CVE-2017-7414
- cpe:2.3:a:horde:groupware:5.1.2:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.2:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.1:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.0:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.0:rc1:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.3:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.1:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.0:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.5:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.3:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.0:rc1:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.0.4:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.1:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.2:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.5:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.0:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.0:rc1:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.7:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.1.4:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.5:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.6:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.3:*:*:*:webmail:*:*:*
- cpe:2.3:a:horde:groupware:5.2.4:*:*:*:webmail:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-7414
1.30%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 79 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-7414
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.1
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:P |
4.9
|
6.4
|
NIST | |
7.5
|
HIGH | CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.6
|
5.9
|
NIST |
CWE ids for CVE-2017-7414
-
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-7414
-
https://lists.horde.org/archives/horde/Week-of-Mon-20170403/056767.html
[horde] SECURITY: Remote Code Execution vulnerability in Horde_Crypt.Mailing List;Vendor Advisory
-
https://lists.debian.org/debian-lts-announce/2018/06/msg00006.html
[SECURITY] [DLA 1398-1] php-horde-crypt security update
Jump to