CVE-2024-47051

CVE-2024-47051 covers two critical vulnerabilities in Mautic versions before 5.2.3. The first is a Remote Code Execution (RCE) flaw in the asset upload functionality, stemming from insufficient enforcement of allowed file extensions (CWE-94), which permits attackers to bypass restrictions and upload executable files such as PHP scripts. The second is a Path Traversal vulnerability (CWE-23) in the upload validation process, caused by improper handling of path components, enabling manipulation of the file deletion process.

These issues require low-privilege authenticated access (PR:L) and can be exploited remotely (AV:N) with low complexity (AC:L), no user interaction (UI:N), and scope change (S:C), earning a CVSS v3.1 score of 9.1 (C:H/I:L/A:L). Authenticated attackers could achieve RCE by uploading and executing malicious scripts, potentially compromising confidentiality, or delete arbitrary files via path traversal, disrupting integrity and availability on the host system.

The primary advisory at https://github.com/mautic/mautic/security/advisories/GHSA-73gx-x7r9-77x2 details these vulnerabilities, with mitigation achieved by upgrading to Mautic 5.2.3 or later, which enforces proper file extension checks and path handling in upload and deletion processes. Additional context on attack vectors is available in OWASP resources on Code Injection and Path Traversal.