CVE-2022-3552
published 2022-10-17CVE-2022-3552: Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
PriorityP260high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EXPLOIT
EPSS
44.00%
98.6th percentile
Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| boxbilling | boxbilling | < 0.0.1 | 0.0.1 |
| boxbilling | boxbilling_boxbilling | >= unspecified < 0.0.1 | 0.0.1 |
| openzeppelin | contracts | >= 4.0.0 < 4.7.1 | 4.7.1 |
| openzeppelin | contracts | >= 4.1.0 < 4.7.1 | 4.7.1 |
| openzeppelin | contracts-upgradeable | >= 4.0.0 < 4.7.1 | 4.7.1 |
| openzeppelin | contracts-upgradeable | >= 4.1.0 < 4.7.1 | 4.7.1 |
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvdv3.07.2HIGHCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r3mf-wrm4-mjqq: Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0
ghsa_unreviewed·2022-10-18
CVE-2022-3552 [HIGH] CWE-434 GHSA-r3mf-wrm4-mjqq: Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0
Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
GHSA
OpenZeppelin Contracts's SignatureChecker may revert on invalid EIP-1271 signers
ghsa·2022-07-21
CVE-2022-31172 [HIGH] CWE-20 OpenZeppelin Contracts's SignatureChecker may revert on invalid EIP-1271 signers
OpenZeppelin Contracts's SignatureChecker may revert on invalid EIP-1271 signers
### Impact
`SignatureChecker.isValidSignatureNow` is not expected to revert. However, an incorrect assumption about Solidity 0.8's `abi.decode` allows some cases to revert, given a target contract that doesn't implement EIP-1271 as expected.
The contracts that may be affected are those that use `SignatureChecker` to check the validity of a signature and handle invalid signatures in a way other than reverting. We believe this to be unlikely.
### Patches
The issue was patched in 4.7.1.
### References
https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3552
### For more information
If you have any questions or comments about this advisory, or need assistance deploying the fix, email us at [securi
GHSA
OpenZeppelin Contracts's ERC165Checker may revert instead of returning false
ghsa·2022-07-21
CVE-2022-31170 [HIGH] CWE-20 OpenZeppelin Contracts's ERC165Checker may revert instead of returning false
OpenZeppelin Contracts's ERC165Checker may revert instead of returning false
### Impact
`ERC165Checker.supportsInterface` is designed to always successfully return a boolean, and under no circumstance revert. However, an incorrect assumption about Solidity 0.8's `abi.decode` allows some cases to revert, given a target contract that doesn't implement EIP-165 as expected, specifically if it returns a value other than 0 or 1.
The contracts that may be affected are those that use `ERC165Checker` to check for support for an interface and then handle the lack of support in a way other than reverting.
### Patches
The issue was patched in 4.7.1.
### References
https://github.com/OpenZeppelin/openzeppelin-contracts/pull/3552
### For more information
If you have any questions or comments ab
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.htmlhttps://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539bhttp://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.htmlhttps://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539b
2022-10-17
Published