CVE-2022-39365
published 2022-10-27CVE-2022-39365: Pimcore is an open source data and experience management platform. Prior to version 10.5.9, the user controlled twig templates rendering in `Pimcore/Mail` &…
PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.65%
73.6th percentile
Pimcore is an open source data and experience management platform. Prior to version 10.5.9, the user controlled twig templates rendering in `Pimcore/Mail` & `ClassDefinition\Layout\Text` is vulnerable to server-side template injection, which could lead to remote code execution. Version 10.5.9 contains a patch for this issue. As a workaround, one may apply the patch manually.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pimcore | pimcore | < 10.5.9 | 10.5.9 |
| pimcore | pimcore | >= 0 < 10.5.9 | 10.5.9 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
ghsa·2022-10-29
CVE-2022-39365 [CRITICAL] CWE-94 RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
### Impact
The user controlled twig templates rendering in `Pimcore/Mail` & `ClassDefinition\Layout\Text` is vulnerable to server-side template Injection RCE.
### Patches
Update to version 10.5.9 or apply this patch manually https://github.com/pimcore/pimcore/pull/13347.patch
### Workarounds
Apply https://github.com/pimcore/pimcore/pull/13347.patch manually.
### References
Credits: @nth347 from Viettel Cyber Security
OSV
RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
osv·2022-10-29
CVE-2022-39365 [CRITICAL] RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
### Impact
The user controlled twig templates rendering in `Pimcore/Mail` & `ClassDefinition\Layout\Text` is vulnerable to server-side template Injection RCE.
### Patches
Update to version 10.5.9 or apply this patch manually https://github.com/pimcore/pimcore/pull/13347.patch
### Workarounds
Apply https://github.com/pimcore/pimcore/pull/13347.patch manually.
### References
Credits: @nth347 from Viettel Cyber Security
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/pimcore/pimcore/commit/43aa34e018f5cd447bceb864358285ba92f68372https://github.com/pimcore/pimcore/pull/13347https://github.com/pimcore/pimcore/pull/13347.patchhttps://github.com/pimcore/pimcore/security/advisories/GHSA-5qxq-vgmm-q39mhttps://github.com/pimcore/pimcore/commit/43aa34e018f5cd447bceb864358285ba92f68372https://github.com/pimcore/pimcore/pull/13347https://github.com/pimcore/pimcore/pull/13347.patchhttps://github.com/pimcore/pimcore/security/advisories/GHSA-5qxq-vgmm-q39m
2022-10-27
Published