CVE-2018-8811 : Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accoun

Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accounts/user_role.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation. Note: It is argued that OpenCMS allows only registered users to upload different kind of content artifacts (SVG, .doc, .docx). The uploaded content is stored in the CMS content repository "as is". In case of scripts inside an SVG, this may or may not be "malicious", there is no way of knowing if the uploaded SVG contains the script for a reason. To exploit the "issue", a user must have an account in the CMS as a content manager

Published 2018-03-20 07:29:00

Updated 2024-08-05 07:15:58

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross-site request forgery (CSRF)Gain privilege

Products affected by CVE-2018-8811

Alkacon » Opencms » Version: 10.5.3
cpe:2.3:a:alkacon:opencms:10.5.3:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2018-8811

Top countries where our scanners detected CVE-2018-8811

Top open port discovered on systems with this issue 443

IPs affected by CVE-2018-8811 5

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2018-8811!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2018-8811

EPSS FAQ

0.29%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 50 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-8811

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-8811

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-8811

https://github.com/alkacon/opencms-core/issues/586

Cross Site Request Forgery Vulnerability in OpenCMS 10.5.3 · Issue #586 · alkacon/opencms-core · GitHub
Exploit;Third Party Advisory
https://www.exploit-db.com/exploits/44391/

OpenCMS 10.5.3 - Cross-Site Request Forgery
Exploit;Third Party Advisory;VDB Entry