CVE-2019-15862

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An issue was discovered in CKFinder through 2.6.2.1. Improper checks of file names allows remote attackers to upload files without any extension (even if the application was configured to accept files only with a defined set of extensions). This affects CKFinder for ASP, CKFinder for ASP.NET, CKFinder for ColdFusion, and CKFinder for PHP.

Se descubrió un problema en CKFinder versiones hasta 2.6.2.1. Las comprobaciones inapropiadas de los nombres de archivos permiten a atacantes remotos cargar archivos sin ninguna extensión (inclusive si la aplicación se configuró para aceptar archivos solamente con un conjunto definido de extensiones). Esto afecta a CKFinder para ASP, CKFinder para ASP.NET, CKFinder para ColdFusion y CKFinder para PHP.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2019-09-03 CVE Reserved
2019-09-26 CVE Published
2023-03-07 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-434: Unrestricted Upload of File with Dangerous Type

CAPEC

References (1)

URL	Tag	Source
https://ckeditor.com/blog/CKFinder-3.5.1-and-CKFinder-2.6.3-released	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cksource Search vendor "Cksource"		Ckfinder Search vendor "Cksource" for product "Ckfinder"				< 2.6.3 Search vendor "Cksource" for product "Ckfinder" and version " < 2.6.3"		asp		Affected
Cksource Search vendor "Cksource"		Ckfinder Search vendor "Cksource" for product "Ckfinder"				< 2.6.3 Search vendor "Cksource" for product "Ckfinder" and version " < 2.6.3"		asp.net		Affected
Cksource Search vendor "Cksource"		Ckfinder Search vendor "Cksource" for product "Ckfinder"				< 2.6.3 Search vendor "Cksource" for product "Ckfinder" and version " < 2.6.3"		coldfusion		Affected
Cksource Search vendor "Cksource"		Ckfinder Search vendor "Cksource" for product "Ckfinder"				< 2.6.3 Search vendor "Cksource" for product "Ckfinder" and version " < 2.6.3"		php		Affected