Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-8518 — Code Injection in Groupware

CWE-94 — Code Injection8 documents8 sources

Severity

9.8CRITICALNVD

EPSS

84.9%

top 0.65%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Debian Linux Fedoraproject Fedora Horde Groupware

Timeline

PublishedFeb 17

Latest updateMay 24

Description

Horde Groupware Webmail Edition 5.2.22 allows injection of arbitrary PHP code via CSV data, leading to remote code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDhorde/groupware5.2.22

Also affects: Debian Linux 8.0, Fedora 30, 31

🔴Vulnerability Details

GHSA

GHSA-v54x-qq77-866f: Horde Groupware Webmail Edition 5↗2022-05-24

▶

OSV

CVE-2020-8518: Horde Groupware Webmail Edition 5↗2020-02-17

▶

CVEList

CVE-2020-8518: Horde Groupware Webmail Edition 5↗2020-02-17

▶

💥Exploits & PoCs

Exploit-DB

Horde Groupware Webmail Edition 5.2.22 - Remote Code Execution↗2020-03-10

▶

Metasploit

Horde CSV import arbitrary PHP code execution↗

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS Possible CVE-2020-8518 (Horde Groupware RCE)↗2020-03-13

▶

📋Vendor Advisories

Debian

CVE-2020-8518: php-horde-data - Horde Groupware Webmail Edition 5.2.22 allows injection of arbitrary PHP code vi...↗2020

▶