#VU67129 Security features bypass in Cerber Security, Antispam & Malware Scan - CVE-2022-2939

Cybersecurity Help s.r.o.

Published: 2022-09-08

Vulnerability identifier: #VU67129

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-2939

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cerber Security, Antispam & Malware Scan
Web applications / Modules and components for CMS

Vendor: Gregory

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to security protection bypass in the "author" parameter in the ~/cerber-load.php file. A remote attacker can gain information about users.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Cerber Security, Antispam & Malware Scan: 5.0 - 9.0

External links
https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2939
https://plugins.trac.wordpress.org/changeset/2772930/wp-cerber/trunk/cerber-load.php

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Information disclosure in WP Cerber Security plugin for WordPress