Vulnerabilities > CVE-2021-25294 - Deserialization of Untrusted Data vulnerability in Opencats

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

opencats

CWE-502

critical

NVD

Published: 2021-01-18

Updated: 2021-01-26

Summary

OpenCATS through 0.9.5-3 unsafely deserializes index.php?m=activity requests, leading to remote code execution. This occurs because lib/DataGrid.php calls unserialize for the parametersactivity:ActivityDataGrid parameter. The PHP object injection exploit chain can leverage an __destruct magic method in guzzlehttp.

Vulnerable Configurations

Part	Description	Count
Application	Opencats Opencats Opencats - Opencats Opencats 0.9.3 Opencats Opencats 0.9.3-1 Opencats Opencats 0.9.3-2 Opencats Opencats 0.9.3-3 Opencats Opencats 0.9.4 Opencats Opencats 0.9.4-1 Opencats Opencats 0.9.4-2 Opencats Opencats 0.9.4-3 Opencats Opencats 0.9.5-3	10

Common Weakness Enumeration (CWE)

CWE-502 - Deserialization of Untrusted Data

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References