CVE-2020-5295 – october/cms

Package

Manager: composer
Name: october/cms
Vulnerable Version: >=1.0.319 <1.0.466

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.08712 pctl0.92145

Details

Local File read vulnerability in OctoberCMS ### Impact An attacker can exploit this vulnerability to read local files of an October CMS server. The vulnerability is only exploitable by an authenticated backend user with the `cms.manage_assets` permission. ### Patches Issue has been patched in Build 466 (v1.0.466). ### Workarounds Apply https://github.com/octobercms/october/commit/2b8939cc8b5b6fe81e093fe2c9f883ada4e3c8cc to your installation manually if unable to upgrade to Build 466. ### References Reported by [Sivanesh Ashok](https://stazot.com/) ### For more information If you have any questions or comments about this advisory: * Email us at [hello@octobercms.com](mailto:hello@octobercms.com) ### Threat assessment: <img width="1108" alt="Screen Shot 2020-03-31 at 2 37 53 PM" src="https://user-images.githubusercontent.com/7253840/78072989-44b3ac80-735d-11ea-8676-09c69f0409c4.png">

Metadata

Created: 2020-06-03T21:58:16Z
Modified: 2021-03-04T18:20:28Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/06/GHSA-r23f-c2j5-rx2f/GHSA-r23f-c2j5-rx2f.json
CWE IDs: ["CWE-829", "CWE-98"]
Alternative ID: GHSA-r23f-c2j5-rx2f
Finding: F123
Auto approve: 1