CVE-2021-32650

moderate-risk
Published 2022-01-14

October CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. Prior to versions 1.0.473 and 1.1.6, an attacker with access to the backend is able to execute PHP code by using the theme import feature. This will bypass the safe mode feature that prevents PHP execution in the CMS templates.The issue has been patched in Build 473 (v1.0.473) and v1.1.6. Those unable to upgrade may apply the patch to their installation manually as a workaround.

Do I need to act?

~
1.1% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (2)

Affected Vendors

Octobercms

References (4)

Patch https://github.com/octobercms/october/commit/167b592eed291ae1563c8fcc5b9b34a03a3...
Exploit https://github.com/octobercms/october/security/advisories/GHSA-5hfj-r725-wpc4
Patch https://github.com/octobercms/october/commit/167b592eed291ae1563c8fcc5b9b34a03a3...
Exploit https://github.com/octobercms/october/security/advisories/GHSA-5hfj-r725-wpc4
40
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 3/34 · Minimal
Exposure 7/34 · Low