Lucene search

[email protected]NVD:CVE-2020-21524

HistorySep 30, 2020 - 6:15 p.m.

CVE-2020-21524

2020-09-3018:15:24

CWE-611

[email protected]

web.nvd.nist.gov

xml

vulnerability

halo v1.1.3

intranet detection

file reading

ddos attacks

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

EPSS

0.004

Percentile

73.8%

JSON

There is a XML external entity (XXE) vulnerability in halo v1.1.3, The function of importing other blogs in the background(/api/admin/migrations/wordpress) needs to parse the xml file, but it is not used for security defense, This vulnerability can detect the intranet, read files, enable ddos attacks, etc. exp:https://github.com/halo-dev/halo/issues/423

Affected configurations

Nvd

Node

halohaloMatch1.1.3-

VendorProductVersionCPE
halohalo1.1.3cpe:2.3:a:halo:halo:1.1.3:-:*:*:*:*:*:*

Vendor	Product	Version	CPE
halo	halo	1.1.3	cpe:2.3:a:halo:halo:1.1.3:-::::::

References

github.com/halo-dev/halo/issues/423

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

EPSS

0.004

Percentile

73.8%

JSON

Related for NVD:CVE-2020-21524

prion1 cvelist1 cve1