Vulnerabilities > CVE-2024-0315 - PHP Remote File Inclusion vulnerability in Fireeye Central Management 9.1.1.956704

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

fireeye

CWE-98

NVD

Published: 2024-01-15

Updated: 2024-01-19

Summary

Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704. This vulnerability allows an attacker to upload a malicious PDF file to the system during the report creation process.

Vulnerable Configurations

Part	Description	Count
Application	Fireeye Fireeye Central Management 9.1.1.956704	1

Common Weakness Enumeration (CWE)

CWE-98 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Common Attack Pattern Enumeration and Classification (CAPEC)

PHP Remote File Inclusion
In this pattern the attacker is able to load and execute arbitrary code remotely available from the application. This is usually accomplished through an insecurely configured PHP runtime environment and an improperly sanitized "include" or "require" call, which the user can then control to point to any web-accessible file. This allows attackers to hijack the targeted application and force it to execute their own instructions.

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-fireeye-products