CVE-2019-18888

Published Nov 21, 2019

Last updated 2 years ago

CVSS high 7.5

Overview

Description: An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. If an application passes unvalidated user input as the file for which MIME type validation should occur, then arbitrary arguments are passed to the underlying file command. This is related to symfony/http-foundation (and symfony/mime in 4.3.x).
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-88

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3E4E0D1-FE7D-48CC-A198-D0CD4E25AF84",
            "versionEndIncluding": "2.8.50",
            "versionStartIncluding": "2.8.0"
          },
          {
            "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81CFEF16-57A9-4123-8254-0D8941420C56",
            "versionEndIncluding": "3.4.34",
            "versionStartIncluding": "3.4.0"
          },
          {
            "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1317DFC-16C6-48A6-B792-3A190E552E79",
            "versionEndIncluding": "4.2.11",
            "versionStartIncluding": "4.2.0"
          },
          {
            "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAE8AADD-6D19-481A-86D2-9E305ED6F197",
            "versionEndIncluding": "4.3.7",
            "versionStartIncluding": "4.3.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References