CVE-2018-13982Path Traversal in Smarty

CWE-22Path Traversal15 documents6 sources
Severity
7.5HIGHNVD
EPSS
2.3%
top 15.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
SmartyDebian Smarty3Debian Linux
Timeline
PublishedSep 18
Latest updateJun 21

Description

Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDsmarty/smarty< 3.1.33
Packagistsmarty/smarty< 3.1.33
debiandebian/smarty3< smarty3 3.1.33+20180830.1.3a78a21f+selfpack1-1 (bookworm)

Also affects: Debian Linux 9.0

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

6
OSV
smarty3 vulnerabilities2022-06-21
OSV
Smarty Path Traversal Vulnerability2022-05-13
GHSA
Smarty Path Traversal Vulnerability2022-05-13
OSV
smarty3 vulnerabilities2022-03-28
OSV
smarty3 vulnerabilities2022-03-28

📋Vendor Advisories

4
Ubuntu
Smarty vulnerabilities2022-06-21
Ubuntu
Smarty vulnerabilities2022-03-28
Ubuntu
Smarty vulnerabilities2022-03-28
Debian
CVE-2018-13982: smarty3 - Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a pa...2018

💬Community

4
Bugzilla
CVE-2018-13982 php-Smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir() [epel-all]2018-09-19
Bugzilla
CVE-2018-13982 php-smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir()2018-09-19
Bugzilla
CVE-2018-13982 php-Smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir() [fedora-all]2018-09-19
Bugzilla
CVE-2018-13982 php-Smarty2: php-smarty: Path traversal vulnerability in Smarty_Security::isTrustedResourceDir() [fedora-all]2018-09-19