GHSA-m496-x567-f98c
Suggest an improvement- Source
- https://github.com/advisories/GHSA-m496-x567-f98c
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/04/GHSA-m496-x567-f98c/GHSA-m496-x567-f98c.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-m496-x567-f98c
- Aliases
- Published
- 2021-04-22T16:10:49Z
- Modified
- 2023-11-08T04:04:45.648742Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Fixes a bug in Zend Framework's Stream HTTP Wrapper
- Details
-
Impact
CVE-2021-3007: Backport of ZendHttpResponse_Stream, added certain type checking as a way to prevent exploitation. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3007
This vulnerability is caused by the unsecured deserialization of an object. In versions higher than Zend Framework 3.0.0, the attacker abuses the Zend3 feature that loads classes from objects in order to upload and execute malicious code in the server. The code can be uploaded using the “callback” parameter, which in this case inserts a malicious code instead of the “callbackOptions” array.
Patches
Has the problem been patched? What versions should users upgrade to? v20.0.9 v19.4.13
- Database specific
{ "nvd_published_at": "2021-04-21T21:15:00Z", "github_reviewed_at": "2021-04-21T20:16:53Z", "severity": "CRITICAL", "github_reviewed": true, "cwe_ids": [ "CWE-502" ] }- References
Affected packages
Packagist / openmage/magento-lts
Package
- Name
- openmage/magento-lts
- Purl
- pkg:composer/openmage/magento-lts
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed19.4.13
Packagist / openmage/magento-lts
Package
- Name
- openmage/magento-lts
- Purl
- pkg:composer/openmage/magento-lts