CVE-2023-46845

EC-CUBE 3 series (3.0.0 to 3.0.18-p6) and 4 series (4.0.0 to 4.0.6-p3, 4.1.0 to 4.1.2-p2, and 4.2.0 to 4.2.2) contain an arbitrary code execution vulnerability due to improper settings of the template engine Twig included in the product. As a result, arbitrary code may be executed on the server where the product is running by a user with an administrative privilege.

CVSS v3 7.2 HIGH

7.2^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://jvn.jp/en/jp/JVN29195731/	Third Party Advisory
https://www.ec-cube.net/info/weakness/20231026/index.php	Exploit Patch Vendor Advisory
https://www.ec-cube.net/info/weakness/20231026/index_3.php	Exploit Patch Vendor Advisory
https://www.ec-cube.net/info/weakness/20231026/index_40.php	Exploit Patch Vendor Advisory
https://jvn.jp/en/jp/JVN29195731/	Third Party Advisory
https://www.ec-cube.net/info/weakness/20231026/index.php	Exploit Patch Vendor Advisory
https://www.ec-cube.net/info/weakness/20231026/index_3.php	Exploit Patch Vendor Advisory
https://www.ec-cube.net/info/weakness/20231026/index_40.php	Exploit Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube::::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p1::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p2::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p3::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p4::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p5::::::
	cpe:2.3:a:ec-cube:ec-cube:3.0.18:p6::::::
	cpe:2.3:a:ec-cube:ec-cube:4.0.6:p1::::::
	cpe:2.3:a:ec-cube:ec-cube:4.0.6:p2::::::
	cpe:2.3:a:ec-cube:ec-cube:4.0.6:p3::::::
	cpe:2.3:a:ec-cube:ec-cube:4.1.2:p1::::::
	cpe:2.3:a:ec-cube:ec-cube:4.1.2:p2::::::

History

21 Nov 2024, 08:29

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-11-07 08:15

Updated : 2024-11-21 08:29

NVD link : CVE-2023-46845

Mitre link : CVE-2023-46845

CVE.ORG link : CVE-2023-46845

JSON object : View

Products Affected

ec-cube

ec-cube

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2023-46845", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2023-11-07T08:15:24.257", "references": [{"url": "https://jvn.jp/en/jp/JVN29195731/", "tags": ["Third Party Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index_3.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index_40.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://jvn.jp/en/jp/JVN29195731/", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index_3.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ec-cube.net/info/weakness/20231026/index_40.php", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "EC-CUBE 3 series (3.0.0 to 3.0.18-p6) and 4 series (4.0.0 to 4.0.6-p3, 4.1.0 to 4.1.2-p2, and 4.2.0 to 4.2.2) contain an arbitrary code execution vulnerability due to improper settings of the template engine Twig included in the product. As a result, arbitrary code may be executed on the server where the product is running by a user with an administrative privilege."}, {"lang": "es", "value": "EC-CUBE series 3 (3.0.0 a 3.0.18-p6) y 4 (4.0.0 a 4.0.6-p3, 4.1.0 a 4.1.2-p2 y 4.2.0 a 4.2.2) contienen una vulnerabilidad de ejecuci\u00f3n de c\u00f3digo arbitrario debido a una configuraci\u00f3n incorrecta del motor de plantillas Twig incluido en el producto. Como resultado, un usuario con privilegios administrativos puede ejecutar c\u00f3digo arbitrario en el servidor donde se ejecuta el producto."}], "lastModified": "2024-11-21T08:29:24.673", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82CF44DC-7824-4C6E-BA58-1B5C929EA7FF", "versionEndIncluding": "3.0.18", "versionStartIncluding": "3.0.0"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD2386CF-AA07-447D-AEA2-7C8202844E3E", "versionEndIncluding": "4.0.6", "versionStartIncluding": "4.0.0"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2482369B-5D65-4C5C-BABE-40AE3ADF2DBE", "versionEndIncluding": "4.1.2", "versionStartIncluding": "4.1.0"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DADE1F31-F4D6-4324-9FF7-AB4C1110A85C", "versionEndExcluding": "4.2.3", "versionStartIncluding": "4.2.0"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10F6D9C1-B4F3-44D8-B266-787DA62228E2"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B10AA450-F786-4AFD-9F26-9B2E2D57C5C2"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D30A28C-609A-4B6F-B257-7A577133A9FE"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7530D411-D883-48E4-8D3F-6E6AEF7398E8"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC24B844-49C6-48EB-ADE1-4E8B2FA1B230"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:3.0.18:p6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "173CA606-87CA-4DDE-AD20-3F0D0CC75BF4"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:4.0.6:p1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56A84599-1C39-4B65-8256-CE5DE240CF61"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:4.0.6:p2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC0D4970-06C7-49D7-B249-7ECA1FCF770E"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:4.0.6:p3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C5C8CCA-12BA-4EE3-8B12-C3D82D89C886"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:4.1.2:p1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77DCDC1E-072D-4859-AD9D-1F1547A5C7BB"}, {"criteria": "cpe:2.3:a:ec-cube:ec-cube:4.1.2:p2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "833340A1-0C34-4FE6-9820-CBCA7F3DC96C"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}