CVE-2018-7669
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
98.4%
An issue was discovered in Sitecore Sitecore.NET 8.1 rev. 151207 Hotfix 141178-1 and above. The ‘Log Viewer’ application is vulnerable to a directory traversal attack, allowing an attacker to access arbitrary files from the host Operating System using a sitecore/shell/default.aspx?xmlcontrol=LogViewerDetails&file= URI. Validation is performed to ensure that the text passed to the ‘file’ parameter correlates to the correct log file directory. This filter can be bypassed by including a valid log filename and then appending a traditional ‘dot dot’ style attack.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sitecore | sitecore.net | * | cpe:2.3:a:sitecore:sitecore.net:*:*:*:*:*:*:*:* |
| sitecore | sitecore.net | 8.1 | cpe:2.3:a:sitecore:sitecore.net:8.1:update1:*:*:*:*:*:* |
| sitecore | sitecore.net | 8.1 | cpe:2.3:a:sitecore:sitecore.net:8.1:update2:*:*:*:*:*:* |
| sitecore | sitecore.net | 8.1 | cpe:2.3:a:sitecore:sitecore.net:8.1:update3:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
98.4%