Multiple vulnerabilities in Sylius
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2022-24749 CVE-2022-24742 CVE-2022-24733 CVE-2022-24743 |
| CWE-ID | CWE-434 CWE-200 CWE-1021 CWE-613 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Sylius Web applications / E-Commerce systems |
| Vendor | Sylius |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Arbitrary file upload
EUVDB-ID: #VU61368
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-24749
CWE-ID:
CWE-434 - Unrestricted Upload of File with Dangerous Type
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file during file upload. A remote attacker can upload an SVG file containing XSS code in the admin panel.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSylius: 1.9.0 - 1.11.1
External linkshttp://github.com/Sylius/Sylius/security/advisories/GHSA-4qrp-27r3-66fj
http://github.com/Sylius/Sylius/releases/tag/v1.11.2
http://github.com/Sylius/Sylius/releases/tag/v1.9.10
http://github.com/Sylius/Sylius/releases/tag/v1.10.11
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Information disclosure
EUVDB-ID: #VU61371
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-24742
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application. A remote user can view the data if browser tab remains unclosed after log out.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSylius: 1.9.0 - 1.11.1
External linkshttp://github.com/Sylius/Sylius/releases/tag/v1.11.2
http://github.com/Sylius/Sylius/security/advisories/GHSA-7563-75j9-6h5p
http://github.com/Sylius/Sylius/releases/tag/v1.9.10
http://github.com/Sylius/Sylius/releases/tag/v1.10.11
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper Restriction of Rendered UI Layers or Frames
EUVDB-ID: #VU61370
Risk: Medium
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-24733
CWE-ID:
CWE-1021 - Improper Restriction of Rendered UI Layers or Frames
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to insufficient HTTP security headers. A remote attacker can perform a clickjacking attack, in which the attacker's page overlays the target application's interface with a different interface provided by the attacker.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSylius: 1.9.0 - 1.11.1
External linkshttp://github.com/Sylius/Sylius/security/advisories/GHSA-4jp3-q2qm-9fmw
http://github.com/Sylius/Sylius/releases/tag/v1.11.2
http://github.com/Sylius/Sylius/releases/tag/v1.9.10
http://github.com/Sylius/Sylius/releases/tag/v1.10.11
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Insufficient Session Expiration
EUVDB-ID: #VU61369
Risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-24743
CWE-ID:
CWE-613 - Insufficient Session Expiration
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to insufficient session expiration issue. A remote non-authenticated attacker can obtain or guess session token and gain unauthorized access to session that belongs to another user.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSylius: 1.10.0 - 1.11.1
External linkshttp://github.com/Sylius/Sylius/releases/tag/v1.11.2
http://github.com/Sylius/Sylius/security/advisories/GHSA-mf3v-f2qq-pf9g
http://github.com/Sylius/Sylius/releases/tag/v1.10.11
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
