CVE-2018-20718

moderate-risk
Published 2019-01-15

In Pydio before 8.2.2, an attack is possible via PHP Object Injection because a user is allowed to use the $phpserial$a:0:{} syntax to store a preference. An attacker either needs a "public link" of a file, or access to any unprivileged user account for creation of such a link.

Do I need to act?

~
9.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: 87499355dd8666e2885b9f558af4843fce4f82c0
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Pydio

Affected Vendors

Pydio

References (2)

Exploit https://blog.ripstech.com/2018/pydio-unauthenticated-remote-code-execution/
Exploit https://blog.ripstech.com/2018/pydio-unauthenticated-remote-code-execution/
48
/ 100
moderate-risk
Severity 32/34 · Critical
Exploitability 11/34 · Low
Exposure 5/34 · Minimal