Camaleon CMS: Arbitrary File Write Vulnerability
CVE-2024-46986

9.9CRITICAL

Key Information:

Vendor: Owen2345
Status: Camaleon-cms
Vendor: CVE Published:; 18 September 2024

What is CVE-2024-46986?

An arbitrary file write vulnerability exists in Camaleon CMS, a content management system built with Ruby on Rails. This flaw, presented through the MediaController's upload method, allows authenticated users to write files to any location on the web server, depending on the underlying filesystem permissions. If an attacker manages to upload a Ruby file to the config/initializers/ directory, this could potentially enable delayed remote code execution. This issue has been mitigated in the release of version 2.8.2, and users are strongly advised to upgrade as there are no known workarounds for this vulnerability.

Affected Version(s)

camaleon-cms < 2.8.2

References

https://github.com/owen2345/camaleon-cms/security/advisor...

x_refsource_CONFIRM

https://codeql.github.com/codeql-query-help/ruby/rb-path-...

x_refsource_MISC

https://owasp.org/www-community/attacks/Path_Traversal

x_refsource_MISC

EPSS Score

88% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2024

Owen2345

What is CVE-2024-46986?

Affected Version(s)

References

EPSS Score

CVSS V3.1

Timeline