CVE-2023-36825 : Orchid is a Laravel package that allows application development of back-office a

Orchid is a Laravel package that allows application development of back-office applications, admin/user panels, and dashboards. A vulnerability present starting in version 14.0.0-alpha4 and prior to version 14.5.0 is related to the deserialization of untrusted data from the `_state` query parameter, which can result in remote code execution. The issue has been addressed in version 14.5.0. Users are advised to upgrade their software to this version or any subsequent versions that include the patch. There are no known workarounds.

Published 2023-07-11 18:15:20

Updated 2023-07-20 01:47:19

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2023-36825

Orchid » Platform
Versions from including (>=) 14.0.1 and before (<) 14.5.0
cpe:2.3:a:orchid:platform:*:*:*:*:*:*:*:*
Matching versions
Orchid » Platform » Version: 14.0.0
cpe:2.3:a:orchid:platform:14.0.0:-:*:*:*:*:*:*
Matching versions
Orchid » Platform » Version: 14.0.0 Update Alpha4
cpe:2.3:a:orchid:platform:14.0.0:alpha4:*:*:*:*:*:*
Matching versions
Orchid » Platform » Version: 14.0.0 Update Alpha5
cpe:2.3:a:orchid:platform:14.0.0:alpha5:*:*:*:*:*:*
Matching versions
Orchid » Platform » Version: 14.0.0 Update Alpha6
cpe:2.3:a:orchid:platform:14.0.0:alpha6:*:*:*:*:*:*
Matching versions
Orchid » Platform » Version: 14.0.0 Update Alpha7
cpe:2.3:a:orchid:platform:14.0.0:alpha7:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-36825

EPSS FAQ

5.41%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 90 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-36825

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.6	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H	2.8	6.0	GitHub, Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-36825

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

Assigned by: security-advisories@github.com (Primary)

References for CVE-2023-36825

https://github.com/orchidsoftware/platform/releases/tag/14.5.0

Release 14.5.0 · orchidsoftware/platform · GitHub
Release Notes
https://github.com/orchidsoftware/platform/security/advisories/GHSA-ph6g-p72v-pc3p

Deserialization of Untrusted Data leads to Remote Code Execution · Advisory · orchidsoftware/platform · GitHub
Vendor Advisory

Jump to

Vulnerability Details : CVE-2023-36825

Products affected by CVE-2023-36825

Exploit prediction scoring system (EPSS) score for CVE-2023-36825

CVSS scores for CVE-2023-36825

CWE ids for CVE-2023-36825

References for CVE-2023-36825