SB2022022304 - Multiple vulnerabilities in Extensis Portfolio
Published: February 23, 2022
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 vulnerabilities.
1) Arbitrary file upload (CVE-ID: CVE-2022-24251)
The vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file during file upload. A remote attacker can upload a malicious file and execute it on the server.
2) Use of hard-coded credentials (CVE-ID: CVE-2022-24255)
The vulnerability allows a remote attacker to gain full access to vulnerable system.
The vulnerability exists due to presence of hard-coded credentials in the main and administrator portals. A remote unauthenticated attacker can access the affected system using the hard-coded credentials.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
3) Arbitrary file upload (CVE-ID: CVE-2022-24252)
The vulnerability allows a remote user to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file during file upload in the main portal. A remote user can upload a malicious file and execute it on the server.
4) Path traversal (CVE-ID: CVE-2022-24254)
The vulnerability allows a remote user to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in filenames inside zip archives. A remote user can upload a specially crafted zip archive and overwrite files on the system, leading to system compromise.
5) Arbitrary file upload (CVE-ID: CVE-2022-24253)
The vulnerability allows a remote user to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file during file upload in admin portal. A remote user can upload a malicious file and execute it on the server.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.