← volver
CVE-2023-27372

CVE-2023-27372

CVSS 9.8 CRITICALEPSS 99.7%CWE-502
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
n/a · n/a
PoCs públicas encontradas18
githubgithub.com/nuts7/CVE-2023-2737268githubgithub.com/Chocapikk/CVE-2023-273728githubgithub.com/0SPwn/CVE-2023-27372-PoC6githubgithub.com/Ap0dexMe0/CVE-2023-273723githubgithub.com/izzz0/CVE-2023-27372-POC2githubgithub.com/1Ronkkeli/spip-cve-2023-27372-rce2githubgithub.com/1amthebest1/CVE-2023-273720githubgithub.com/dream434/CVE-2023-273720githubgithub.com/KirolosKhairy/CVE-2023-273720githubgithub.com/estebanzarate/CVE-2023-27372-SPIP-4.2.1-Unauthenticated-RCE-PoC0githubgithub.com/scriniariii/CVE-2023-273720githubgithub.com/G01d3nW01f/cve-2023-273720githubgithub.com/redboltsec/CVE-2023-27372-PoC0exploitdbwww.exploit-db.com/exploits/51536no verificadocve_referencepacketstormsecurity.com/files/173044/SPIP-4.2.1-Remote-Code-Execution.htmlno verificadocve_referencepacketstorm.news/files/id/171921no verificadocve_referencepacketstorm.news/files/id/173044no verificadocve_referencepacketstormsecurity.com/files/171921/SPIP-Remote-Command-Execution.htmlno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/171921/SPIP-Remote-Command-Execution.htmlhttp://packetstormsecurity.com/files/173044/SPIP-4.2.1-Remote-Code-Execution.htmlhttps://blog.spip.net/Mise-a-jour-critique-de-securite-sortie-de-SPIP-4-2-1-SPIP-4-1-8-SPIP-4-0-10-et.htmlhttps://git.spip.net/spip/spip/commit/5aedf49b89415a4df3eb775eee3801a2b4b88266https://git.spip.net/spip/spip/commit/96fbeb38711c6706e62457f2b732a652a04a409dhttps://packetstorm.news/files/id/171921https://packetstorm.news/files/id/173044https://www.debian.org/security/2023/dsa-5367