CVE-2020-28948

CWE-502 — Deserialization of Untrusted Data CWE-94 — Code Injection CWE-22 — Path Traversal CWE-5919 documents8 sources

Severity

7.8HIGH

EPSS

76.2%

top 1.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Drupal Drupal PHP Archive TAR Drupal Core +3 more

Timeline

PublishedNov 19

Latest updateSep 3

Description

Archive_Tar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

▶Packagistdrupal/core8.0.0 — 8.8.12+3

▶NVDdrupal/drupal7.0 — 7.75+3

▶NVDphp/archive_tar< 1.4.11

▶Packagistpear/archive_tar< 1.4.11

▶Ubuntudrupal7< 7.44-1ubuntu1~16.04.0+esm2

Also affects: Debian Linux 10.0, 9.0, Fedora 32, 33, 34, 35

🔴Vulnerability Details

OSV

drupal7 vulnerabilities↗2024-09-03

▶

OSV

drupal7 vulnerabilities↗2024-08-27

▶

GHSA

Drupal core Arbitrary PHP code execution↗2024-05-15

▶

OSV

Drupal core Arbitrary PHP code execution↗2024-05-15

▶

OSV

Multiple vulnerabilities through filename manipulation in Archive_Tar↗2021-04-22

▶

📋Vendor Advisories

Ubuntu

Drupal vulnerabilities↗2024-09-03

▶

Ubuntu

Drupal vulnerabilities↗2024-08-27

▶

Red Hat

Archive_Tar: directory traversal due to inadequate checking of symbolic links↗2021-01-27

▶

Ubuntu

PEAR vulnerabilities↗2020-12-01

▶

Drupal

Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2020-013↗2020-11-25

▶