SB2020042203 - Multiple vulnerabilities in Joomla!
Published: April 22, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Improper access control (CVE-ID: CVE-2020-11891)
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions in "com_users" access level editing function. A remote attacker can bypass implemented security restrictions and edit the usergroups.
2) Input validation error (CVE-ID: CVE-2020-11890)
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to insufficient validation of user-supplied input in the usergroup table class. A remote attacker can pass specially crafted input to the application, leading to a broken ACL configuration.
3) Improper access control (CVE-ID: CVE-2020-11889)
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions in "com_users" access level deletion function. A remote attacker can bypass implemented security restrictions and delete the usergroups.
Remediation
Install update from vendor's website.
References
- https://developer.joomla.org/security-centre/809-20200401-core-incorrect-access-control-in-com-users-access-level-editing-function.html
- https://developer.joomla.org/security-centre/810-20200402-core-missing-checks-for-the-root-usergroup-in-usergroup-table.html
- https://developer.joomla.org/security-centre/811-20200403-core-incorrect-access-control-in-com-users-access-level-deletion-function