CVE-2014-2921: Code Injection
First published: Mon Apr 21 2014(Updated: )
The `getObjectByToken` function in `Newsletter.php` in the `Pimcore_Tool_Newsletter` module in pimcore 1.4.9 through 2.0.0 does not properly handle an object obtained by unserializing Lucene search data, which allows remote attackers to conduct PHP object injection attacks and execute arbitrary code via vectors involving a `Zend_Pdf_ElementFactory_Proxy` object and a pathname with a trailing `\0` character.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| composer/pimcore/pimcore | >=1.4.9<2.2.0 | 2.2.0 |
| Pimcore E-commerce Framework | =1.4.9 | |
| Pimcore E-commerce Framework | =1.5.0 | |
| Pimcore E-commerce Framework | =2.1.0 | |
| Pimcore E-commerce Framework | =2.2.0 | |
| =1.4.9 | ||
| =1.5.0 | ||
| =2.1.0 | ||
| =2.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2014-2921
- http://openwall.com/lists/oss-security/2014/04/21/1
- http://www.pimcore.org/en/resources/blog/pimcore+2.2+released_b442
- https://github.com/pimcore/pimcore/commit/3cb2683e669b5644f180d362cfa9614c09bef280
- https://github.com/pedrib/PoC/blob/caa03645e256a8b50f1101c983d39586ebc467ee/advisories/pimcore-2.1.0.txt
- https://github.com/advisories/GHSA-g7pj-3v97-3vxp (Advisory)
- https://github.com/pedrib/PoC/blob/master/pimcore-2.1.0.txt
Frequently Asked Questions
What is the severity of CVE-2014-2921?
CVE-2014-2921 has a high severity rating due to its potential for PHP object injection and remote code execution.
How do I fix CVE-2014-2921?
To mitigate CVE-2014-2921, upgrade your Pimcore installation to version 2.2.0 or later.
Which versions are affected by CVE-2014-2921?
CVE-2014-2921 affects Pimcore versions 1.4.9 through 2.0.0.
What types of attacks can CVE-2014-2921 facilitate?
CVE-2014-2921 can facilitate PHP object injection attacks that could lead to arbitrary code execution.
Is it safe to use Pimcore versions prior to 2.2.0 after CVE-2014-2921?
Using Pimcore versions prior to 2.2.0 poses a security risk due to the vulnerability identified in CVE-2014-2921.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/description
- agent/trending
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-g7pj-3v97-3vxp
- alias/CVE-2014-2921
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/nvd-cve
- source/NVD
- agent/source
- collector/nvd-api
- agent/softwarecombine
- agent/tags
- agent/event
- collector/github-advisory
- vendor/pimcore
- canonical/pimcore e-commerce framework
- version/pimcore e-commerce framework/1.4.9
- version/pimcore e-commerce framework/1.5.0
- version/pimcore e-commerce framework/2.1.0
- version/pimcore e-commerce framework/2.2.0
- package-manager/composer