CVE-2022-41951

OroPlatform is a PHP Business Application Platform (BAP) designed to make development of custom business applications easier and faster. Path Traversal is possible in Oro\Bundle\GaufretteBundle\FileManager::getTemporaryFileName. With this method, an attacker can pass the path to a non-existent file, which will allow writing the content to a new file that will be available during script execution. This vulnerability has been fixed in version 5.0.9.

Published: Nov 27, 2023
Updated: May 10, 2024
CVE: CVE-2022-41951
GHSA: GHSA-9v3j-4j64-p937
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
oro / platform	4.1.0	4.1.13.x
oro / platform	4.2.0	4.2.10.x
oro / platform	5.0.0	5.0.8
oroinc / oroplatform	-	5.0.9

https://github.com/oroinc/platform/security/advisories/GHSA-9v3j-4j64-p937

Vulnerability Database

290,020

CVE-2022-41951