CVE-2015-8747
critical
CVSS v3
10.0
CVSS v2
7.5
VIR risk
10.0
Description
The multifilesystem storage backend in Radicale before 1.1 allows remote attackers to read or write to arbitrary files via a crafted component name.
Predictions
Exploit likelihood
98%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-8747
Vendor advisory: security@debian.org — https://github.com/Kozea/Radicale/pull/343
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 1.1.1-1 |
| debian | bullseye | fixed | 1.1.1-1 |
| debian | forky | fixed | 1.1.1-1 |
| debian | sid | fixed | 1.1.1-1 |
| debian | trixie | fixed | 1.1.1-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| radicale | radicale | {"endIncluding":"1.0.1"} | |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175738.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175776.html
- http://www.debian.org/security/2016/dsa-3462
- http://www.openwall.com/lists/oss-security/2016/01/05/7
- http://www.openwall.com/lists/oss-security/2016/01/06/4
- http://www.openwall.com/lists/oss-security/2016/01/06/7
- http://www.securityfocus.com/bid/80255
- https://github.com/Kozea/Radicale/pull/343
- https://github.com/Unrud/Radicale/commit/bcaf452e516c02c9bed584a73736431c5e8831f1
- https://nvd.nist.gov/vuln/detail/CVE-2015-8747
- https://github.com/Kozea/Radicale/commit/18c88642fb19ee1480690e51fff9605ecc6fdab5
- https://github.com/Kozea/Radicale
- https://github.com/pypa/advisory-database/tree/main/vulns/radicale/PYSEC-2016-36.yaml
- https://web.archive.org/web/20200804235922/http://www.securityfocus.com/bid/80255
- https://pypi.org/project/radicale
- https://security-tracker.debian.org/tracker/CVE-2015-8747
CWEs
CWE-20
Verify integrity in audit chain (admin only). AS-IS.