CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
9.0%
timber/timber is vulnerable to Deserialization of Untrusted Data. The vulnerability due to a lack of input validation before passing it into the file_exist
s function. An attacker can execute arbitrary code by uploading files of any type to the server which then gets passed in the phar:// protocol to deserialize the uploaded file and instantiate arbitrary PHP objects. This is particularly dangerous when used with frameworks or developer code that have known POP chains, which ran result in remote code execution.