Vulnerability DatabaseCVE-2022-36066
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2022-36066
September 29, 2022
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the "stable" branch and prior to 2.9.0.beta10 on the "beta" and "tests-passed" branches, admins can upload a maliciously crafted Zip or Gzip Tar archive to write files at arbitrary locations and trigger remote code execution. The problem is patched in version 2.8.9 on the "stable" branch and version 2.9.0.beta10 on the "beta" and "tests-passed" branches. There are no known workarounds.
Related Resources (5)
https://nvd.nist.gov/vuln/detail/CVE-2022-36066
https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/36xxx/CVE-2022-36066.json
https://github.com/discourse/discourse/pull/18421
https://github.com/discourse/discourse/security/advisories/GHSA-grvh-qcpg-hfmv
https://github.com/discourse/discourse/commit/b27d5626d208a22c516a0adfda7554b67b493835
Do you need more information?
Contact Us
CVSS v4
Base Score:
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
HIGH
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
HIGH
Subsequent System Integrity
HIGH
Subsequent System Availability
HIGH
CVSS v3
Base Score:
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH
Weakness Type (CWE)
Unrestricted Upload of File with Dangerous Type
CWE-434
EPSS
Base Score:
3.56