cbcvebase.
CVE-2022-37155
published 2022-12-14

CVE-2022-37155: RCE in SPIP 3.1.13 through 4.1.2 allows remote authenticated users to execute arbitrary code via the _oups parameter.

PriorityP269high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
39.97%
98.4th percentile
RCE in SPIP 3.1.13 through 4.1.2 allows remote authenticated users to execute arbitrary code via the _oups parameter.

Affected

7 ranges
VendorProductVersion rangeFixed in
debianspip< spip 3.2.11-3+deb11u5 (bullseye)spip 3.2.11-3+deb11u5 (bullseye)
spipspip>= 0 < 3.2.11-3+deb11u53.2.11-3+deb11u5
spipspip>= 0 < 4.1.5+dfsg-14.1.5+dfsg-1
spipspip>= 0 < 4.1.5+dfsg-14.1.5+dfsg-1
spipspip>= 0 < 3.1.4-4~deb9u5ubuntu0.1~esm23.1.4-4~deb9u5ubuntu0.1~esm2
spipspip>= 0 < 3.2.7-1ubuntu0.1+esm23.2.7-1ubuntu0.1+esm2
spipspip3.1.13 – 4.1.2

Detection & IOCsextracted from sources · hover to see the quote

other_oups
  • Monitor HTTP requests to SPIP endpoints containing the `_oups` parameter, which is the attack vector for this authenticated RCE vulnerability in SPIP 3.1.13 through 4.1.2.
  • ·Exploitation requires prior authentication; unauthenticated attackers cannot directly trigger this RCE.
  • ·Affected versions are SPIP 3.1.13 through 4.1.2; Debian fixed versions are 3.2.11-3+deb11u5 (bullseye), 4.1.5+dfsg-1 (forky/sid/trixie).

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_ubuntu6.2MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.