CVE-2024-57548
Published: 27 January 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2024-57548 is a critical vulnerability in CMSimple version 5.16 that allows users to edit the log.php file via the print page functionality. Classified under CWE-276 (Incorrect Default Permissions), it carries a CVSS v3.1 base score of 9.1 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N), indicating high severity due to its potential for significant confidentiality and integrity impacts.
An unauthenticated attacker with network access can exploit this issue with low attack complexity and no user interaction required. By leveraging the print page, the attacker gains the ability to modify the log.php file, enabling high-impact violations of confidentiality and integrity as reflected in the CVSS metrics.
Research details on the broken access control are documented in advisories at https://gist.github.com/h4ckr4v3n/afbb87b5a05f283dbee705709c2769eb and https://github.com/h4ckr4v3n/cmsimple5.16_research/blob/main/CMSimple%205.16%20Broken%20Access%20Control%20to%20log.php.md, which security practitioners should review for mitigation guidance specific to CMSimple deployments.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The broken access control in CMSimple 5.16 allows editing of log.php via the print page, enabling attackers to inject PHP web shell code for remote execution (T1100), exploitation of the public-facing web application (T1190), and persistence via server software components (T1505.003).