CVE-2020-8518

DEB

CriticalConfirmedExploit available

Horde Groupware Webmail Edition 5.2.22 allows injection of arbitrary PHP code via CSV data, leading to remote code execution.

CVSS

9.8

Critical

EPSS

0.71

p99

Published

2020-01-01

Updated

2020-01-01

Description

Horde Groupware Webmail Edition 5.2.22 allows injection of arbitrary PHP code via CSV data, leading to remote code execution.

Tags · CWE

Pre-auth

CWE-94

CAPEC-35

CAPEC-77

CAPEC-242

Affected products

Debian_linux

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2020-01-01

Published

2020-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.711 · p99

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1027.006HTML Smuggling

└ via CAPEC-35 · CWE-94

T1027.009Embedded Payloads

└ via CAPEC-35 · CWE-94

T1564.009Resource Forking

└ via CAPEC-35 · CWE-94

Known exploits — Сканер-ВС

48215

exploitdb · https://www.exploit-db.com/exploits/48215

Enterprise

Affected products

Debian

Debian Linux Php-horde-data

Product	Vendor	Status
php-horde-data		Tracked
php-horde-data		Tracked
php-horde-data		Tracked
php-horde-data		Tracked
php-horde-data		Tracked
php-horde-data		Tracked
php-horde-data		Tracked
debian_linux	*	Tracked
fedora	*	Tracked
groupware	*	Tracked

Source databases

DEB

CVE

UBU