CVE-2022-21829

CVE-2022-21829

Vendor N/A
Product https://github.com/concrete5/concrete5
Weakness CWE-319 · Cleartext transmission
Published June 24, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

Concrete CMS Versions 9.0.0 through 9.0.2 and 8.5.7 and below can download zip files over HTTP and execute code from those zip files which could lead to an RCE. Fixed by enforcing ‘concrete_secure’ instead of ‘concrete’. Concrete now only makes requests over https even a request comes in via http. Concrete CMS security team ranked this 8 with CVSS v3.1 vector: AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Credit goes to Anna for reporting HackerOne 1482520.

Key dates

02Disclosure timeline

June 24, 2022 CVE published
August 3, 2024 Record updated