CVE-2021-32758
Layout XML Arbitrary Code Fix
Severity Score
7.2
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
OpenMage Magento LTS is an alternative to the Magento CE official releases. Prior to versions 19.4.15 and 20.0.11, layout XML enabled admin users to execute arbitrary commands via block methods. The latest OpenMage Versions up from v19.4.15 and v20.0.11 have this Issue patched.
OpenMage Magento LTS es una alternativa a las versiones oficiales de Magento CE. Anterior a versiones 19.4.15 y 20.0.11, el diseño XML permitía a usuarios administradores ejecutar comandos arbitrarioss por medio de métodos de bloqueo. Las últimas versiones de OpenMage desde v19.4.15 y v20.0.11, presentan este problema parcheado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-05-12 CVE Reserved
- 2021-08-27 CVE Published
- 2023-07-14 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-91: XML Injection (aka Blind XPath Injection)
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://github.com/OpenMage/magento-lts/releases/tag/v19.4.15 | Release Notes | |
| https://github.com/OpenMage/magento-lts/releases/tag/v20.0.11 | Release Notes | |
| https://github.com/OpenMage/magento-lts/security/advisories/GHSA-26rr-v2j2-25fh | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Openmage Search vendor "Openmage" | Openmage Search vendor "Openmage" for product "Openmage" | < 19.4.15 Search vendor "Openmage" for product "Openmage" and version " < 19.4.15" | lts |
Affected
| ||||||
| Openmage Search vendor "Openmage" | Openmage Search vendor "Openmage" for product "Openmage" | >= 20.0.00 < 20.0.11 Search vendor "Openmage" for product "Openmage" and version " >= 20.0.00 < 20.0.11" | lts |
Affected
| ||||||