October CMS safe mode bypass using Twig sandbox escape
CVE-2023-44382

9.1CRITICAL

Key Information:

Vendor: octobercms
Status: october
Vendor: CVE Published:; 1 December 2023

What is CVE-2023-44382?

An authenticated backend user of October CMS, possessing specific permissions, can exploit a flaw that bypasses the enforced safe mode limitation. By crafting certain Twig code, the user can execute arbitrary PHP code despite restrictions. This vulnerability poses a significant risk as it enables potential attackers to compromise the system and execute unauthorized operations. The issue has been addressed in version 3.4.15, and users are advised to update promptly.

Affected Version(s)

october >= 3.0.0, < 3.4.15

References

https://github.com/octobercms/october/security/advisories...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 1, 2023
Vulnerability Reserved
Sep 28, 2023

CVE-2023-44382 Data

JSON