CVE-2018-7600

Drupal Core Remote Code Execution Vulnerability

Severity Score

9.8

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

*SSVC

Descriptions

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

Drupal en versiones anteriores a la 7.58, 8.x anteriores a la 8.3.9, 8.4.x anteriores a la 8.4.6 y 8.5.x anteriores a la 8.5.1 permite que los atacantes remotos ejecuten código arbitrario debido a un problema que afecta a múltiples subsistemas con configuraciones de módulos por defecto o comunes.

Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2018-03-01 CVE Reserved
2018-03-29 CVE Published
2018-04-14 First Exploit
2021-11-03 Exploited in Wild
2022-05-03 KEV Due Date
2024-08-05 CVE Updated
2024-10-30 EPSS Updated

CWE

CWE-20: Improper Input Validation

CAPEC

References (44)

URL	Tag	Source
http://www.securityfocus.com/bid/103534	Third Party Advisory
http://www.securitytracker.com/id/1040598	Third Party Advisory
https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600	Third Party Advisory
https://blog.appsecco.com/remote-code-execution-with-drupal-core-sa-core-2018-002-95e6ecc0c714	Third Party Advisory
https://greysec.net/showthread.php?tid=2912&pid=10561	Issue Tracking
https://lists.debian.org/debian-lts-announce/2018/03/msg00028.html	Mailing List
https://twitter.com/RicterZ/status/979567469726613504	Third Party Advisory
https://twitter.com/RicterZ/status/984495201354854401	Third Party Advisory
https://twitter.com/arancaytar/status/979090719003627521	Third Party Advisory
https://www.synology.com/support/security/Synology_SA_18_17	Third Party Advisory
https://www.tenable.com/blog/critical-drupal-core-vulnerability-what-you-need-to-know	Third Party Advisory
https://greysec.net/showthread.php?tid=2912
https://github.com/nixawk/labs/issues/19
https://github.com/FireFart/CVE-2018-7600

URL	Date	SRC
https://www.exploit-db.com/exploits/44482	2024-08-05
https://www.exploit-db.com/exploits/44449	2024-08-05
https://www.exploit-db.com/exploits/44448	2024-08-05
https://github.com/a2u/CVE-2018-7600	2024-08-05
https://github.com/pimps/CVE-2018-7600	2018-04-26
https://github.com/g0rx/CVE-2018-7600-Drupal-RCE	2024-08-05
https://github.com/firefart/CVE-2018-7600	2018-04-16
https://github.com/r3dxpl0it/CVE-2018-7600	2020-08-31
https://github.com/dr-iman/CVE-2018-7600-Drupal-0day-RCE	2018-04-14
https://github.com/sl4cky/CVE-2018-7600	2018-04-15
https://github.com/sl4cky/CVE-2018-7600-Masschecker	2018-04-15
https://github.com/rabbitmask/CVE-2018-7600-Drupal7	2020-04-15
https://github.com/knqyf263/CVE-2018-7600	2018-11-17
https://github.com/zhzyker/CVE-2018-7600-Drupal-POC-EXP	2020-04-07
https://github.com/dwisiswant0/CVE-2018-7600	2018-04-14
https://github.com/thehappydinoa/CVE-2018-7600	2023-07-18
https://github.com/shellord/CVE-2018-7600-Drupal-RCE	2019-10-17
https://github.com/anldori/CVE-2018-7600	2022-07-29
https://github.com/soch4n/CVE-2018-7600	2018-05-25
https://github.com/r0lh/CVE-2018-7600	2023-01-17
https://github.com/raytran54/CVE-2018-7600	2024-07-17
https://github.com/0xAJ2K/CVE-2018-7600	2021-06-05
https://github.com/killeveee/CVE-2018-7600	2024-02-01
https://github.com/happynote3966/CVE-2018-7600	2018-07-17
https://github.com/0xConstant/CVE-2018-7600	2022-04-14
https://github.com/rafaelcaria/drupalgeddon2-CVE-2018-7600	2021-10-27
https://research.checkpoint.com/uncovering-drupalgeddon-2	2024-08-05

URL	Date	SRC

URL	Date	SRC
https://groups.drupal.org/security/faq-2018-002	2019-03-01
https://www.debian.org/security/2018/dsa-4156	2019-03-01
https://www.drupal.org/sa-core-2018-002	2018-03-28

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Drupal Search vendor "Drupal"		Drupal Search vendor "Drupal" for product "Drupal"				<= 7.57 Search vendor "Drupal" for product "Drupal" and version " <= 7.57"		-		Affected
Drupal Search vendor "Drupal"		Drupal Search vendor "Drupal" for product "Drupal"				>= 8.0.0 < 8.3.9 Search vendor "Drupal" for product "Drupal" and version " >= 8.0.0 < 8.3.9"		-		Affected
Drupal Search vendor "Drupal"		Drupal Search vendor "Drupal" for product "Drupal"				>= 8.4.0 < 8.4.6 Search vendor "Drupal" for product "Drupal" and version " >= 8.4.0 < 8.4.6"		-		Affected
Drupal Search vendor "Drupal"		Drupal Search vendor "Drupal" for product "Drupal"				>= 8.5.0 < 8.5.1 Search vendor "Drupal" for product "Drupal" and version " >= 8.5.0 < 8.5.1"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				7.0 Search vendor "Debian" for product "Debian Linux" and version "7.0"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				8.0 Search vendor "Debian" for product "Debian Linux" and version "8.0"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				9.0 Search vendor "Debian" for product "Debian Linux" and version "9.0"		-		Affected