cbcvebase.
CVE-2019-19326
published 2020-07-15

CVE-2019-19326: Silverstripe CMS sites through 4.4.4 which have opted into HTTP Cache Headers on responses served by the framework's HTTP layer can be vulnerable to web cache…

PriorityP427medium5.9CVSS 3.1
AVNACHPRNUINSUCNIHAN
EPSS
0.76%
50.6th percentile
Silverstripe CMS sites through 4.4.4 which have opted into HTTP Cache Headers on responses served by the framework's HTTP layer can be vulnerable to web cache poisoning. Through modifying the X-Original-Url and X-HTTP-Method-Override headers, responses with malicious HTTP headers can return unexpected responses to other consumers of this cached response. Most other headers associated with web cache poisoning are already disabled through request hostname forgery whitelists.

Affected

6 ranges
VendorProductVersion rangeFixed in
silverstripeframework>= 3.0.0 < 3.7.53.7.5
silverstripeframework>= 4.0.0 < 4.4.74.4.7
silverstripeframework>= 4.5.0 < 4.5.44.5.4
silverstripesilverstripe>= 3.0.0 < 3.7.53.7.5
silverstripesilverstripe>= 4.0.0 < 4.4.74.4.7
silverstripesilverstripe>= 4.5.0 < 4.5.44.5.4

CVSS provenance

nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.