UBUNTU-CVE-2020-36326

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2020-36326

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-36326.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-36326

Related

CVE-2020-36326

Published

2021-04-28T03:15:00Z

Modified

2021-04-28T03:15:00Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

PHPMailer 6.1.8 through 6.4.0 allows object injection through Phar Deserialization via addAttachment with a UNC pathname. NOTE: this is similar to CVE-2018-19296, but arose because 6.1.8 fixed a functionality problem in which UNC pathnames were always considered unreadable by PHPMailer, even in safe contexts. As an unintended side effect, this fix eliminated the code that blocked addAttachment exploitation.

References

Affected packages

Ubuntu:22.04:LTS / libphp-phpmailer

Package

Name: libphp-phpmailer
Purl: pkg:deb/ubuntu/libphp-phpmailer?arch=src?distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.2.0-2

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "6.2.0-2",
            "binary_name": "libphp-phpmailer"
        }
    ]
}