CVE-2015-5723
published 2016-06-07CVE-2015-5723: Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before…
PriorityP336high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.38%
30.0th percentile
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aws | aws-sdk-php | >= 3.0.0 < 3.2.1 | 3.2.1 |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | doctrine | < doctrine 2.4.8-1 (bookworm) | doctrine 2.4.8-1 (bookworm) |
| debian | php-doctrine-annotations | < doctrine 2.4.8-1 (bookworm) | doctrine 2.4.8-1 (bookworm) |
| debian | php-doctrine-bundle | < doctrine 2.4.8-1 (bookworm) | doctrine 2.4.8-1 (bookworm) |
| debian | php-doctrine-cache | < doctrine 2.4.8-1 (bookworm) | doctrine 2.4.8-1 (bookworm) |
| debian | php-doctrine-common | < doctrine 2.4.8-1 (bookworm) | doctrine 2.4.8-1 (bookworm) |
| doctrine-project | annotations | <= 1.2.6 | — |
| doctrine-project | cache | <= 1.3.1 | — |
| doctrine-project | cache | — | — |
| doctrine-project | cache | — | — |
| doctrine-project | common | <= 2.4.2 | — |
| doctrine-project | common | — | — |
| doctrine-project | doctrinemongodbbundle | — | — |
| doctrine-project | mongodb-odm | <= 1.0.1 | — |
| doctrine-project | object_relational_mapper | <= 2.4.7 | — |
| doctrine-project | object_relational_mapper | — | — |
| doctrine | annotations | >= 0 < 1.2.7 | 1.2.7 |
| doctrine | cache | >= 1.0.0 < 1.3.2 | 1.3.2 |
| doctrine | cache | >= 1.4.0 < 1.4.2 | 1.4.2 |
| doctrine | common | >= 0 < 2.4.3 | 2.4.3 |
| doctrine | common | >= 2.5.0-stable < 2.5.1 | 2.5.1 |
| doctrine | mongodb-odm | >= 0 < 1.0.2 | 1.0.2 |
| doctrine | mongodb-odm-bundle | >= 0 < 3.0.1 | 3.0.1 |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.8HIGH
vendor_debian7.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Doctrine Security Misconfiguration Vulnerability
ghsa·2022-05-17
CVE-2015-5723 [HIGH] Doctrine Security Misconfiguration Vulnerability
Doctrine Security Misconfiguration Vulnerability
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.
OSV
Doctrine Security Misconfiguration Vulnerability
osv·2022-05-17
CVE-2015-5723 [HIGH] Doctrine Security Misconfiguration Vulnerability
Doctrine Security Misconfiguration Vulnerability
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.
OSV
CVE-2015-5723: Doctrine Annotations before 1
osv·2016-06-07·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723: Doctrine Annotations before 1
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.
Debian
CVE-2015-5723: doctrine - Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Co...
vendor_debian·2015·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723: doctrine - Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Co...
Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.
Scope: local
bookworm: resolved (fixed in 2.4.8-1)
bullseye: resolved (fixed in 2.4.8-1)
forky: resolved (fixed in 2.4.8-1)
sid: resolved (fixed in 2.4.8-1)
trixie: resolved (fixed in 2.4.8-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-5723 php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07)
bugzilla·2015-10-06·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723 php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07)
CVE-2015-5723 php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07)
It was reported that incorrect permissions masks when creating a new directory or file can lead to local arbitrary code execution or privilege escalation.
This issue has been fixed in upstream versions 1.12.16 and 2.4.8.
External References:
http://framework.zend.com/security/advisory/ZF2015-07
Discussion:
Created php-ZendFramework2 tracking bugs for this issue:
Affects: epel-6 [bug 1269079]
---
Created php-ZendFramework tracking bugs for this issue:
Affects: epel-all [bug 1269080]
Affects: fedora-all [bug 1269081]
---
php-ZendFramework2-2.2.10-2.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
---
A
Bugzilla
CVE-2015-5723 php-ZendFramework: various flaws [epel-all]
bugzilla·2015-10-06·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723 php-ZendFramework: various flaws [epel-all]
CVE-2015-5723 php-ZendFramework: various flaws [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora EPEL. Wh
Bugzilla
CVE-2015-5723 php-ZendFramework2: php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07) [epel-6]
bugzilla·2015-10-06·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723 php-ZendFramework2: php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07) [epel-6]
CVE-2015-5723 php-ZendFramework2: php-ZendFramework: filesystem permissions issues in multiple components (ZF2015-07) [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
ep
Bugzilla
CVE-2015-5723 php-ZendFramework: various flaws [fedora-all]
bugzilla·2015-10-06·CVSS 7.8
CVE-2015-5723 [HIGH] CVE-2015-5723 php-ZendFramework: various flaws [fedora-all]
CVE-2015-5723 php-ZendFramework: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora. While only
Wiz
GHSA-27qh-8cxx-2cr5 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz
GHSA-27qh-8cxx-2cr5 Impact, Exploitability, and Mitigation Steps | Wiz
## GHSA-27qh-8cxx-2cr5 :
AWS SDK for PHP vulnerability analysis and mitigation
## Summary
This notification is related to the CloudFront signing utilities in the AWS SDK for PHP, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes and backslashes, in input values.
## Impact
The CloudFront signing utilities build policy documents that define access restrictions for signed URLs and cookies. If an application passes unsanitized input containing special characters to these utilities, the resulting policy document may not reflect the application's intended access restrictions. While the SDK was functioning safely within the requirements of the sha
http://framework.zend.com/security/advisory/ZF2015-07http://www.debian.org/security/2015/dsa-3369http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2IUUC7HPN4XE5NNTG4MR76OC662XRZUO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPS7A54FQ2CR6PH4NDR6UIYJIRNFXW67/http://framework.zend.com/security/advisory/ZF2015-07http://www.debian.org/security/2015/dsa-3369http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2IUUC7HPN4XE5NNTG4MR76OC662XRZUO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPS7A54FQ2CR6PH4NDR6UIYJIRNFXW67/
2016-06-07
Published