CVE-2024-25625Injection in Admin-ui-classic-bundle

CWE-74Injection4 documents4 sources
Severity
9.3CRITICALNVD
CNA8.1
EPSS
0.0%
top 92.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Pimcore Admin-ui-classic-bundlePimcore Admin Classic Bundle
Timeline
PublishedFeb 19
Latest updateFeb 20

Description

Pimcore's Admin Classic Bundle provides a Backend UI for Pimcore. A potential security vulnerability has been discovered in `pimcore/admin-ui-classic-bundle` prior to version 1.3.4. The vulnerability involves a Host Header Injection in the `invitationLinkAction` function of the UserController, specifically in the way `$loginUrl` trusts user input. The host header from incoming HTTP requests is used unsafely when generating URLs. An attacker can manipulate the HTTP host header in requests to the

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.8

Affected Packages3 packages

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
Pimcore Host Header Injection in user invitation link2024-02-20
OSV
Pimcore Host Header Injection in user invitation link2024-02-20
CVEList
Pimcore Host Header Injection in user invitation link2024-02-19
CVE-2024-25625 — Injection in Admin-ui-classic-bundle | cvebase