Vulnerability-Lookup

CNVD-2020-66085

Vulnerability from cnvd - Published: 2020-11-24

Title

Sentrifugo代码问题漏洞（CNVD-2020-66085）

Description

Sentrifugo是一套人力资源管理系统。该系统包括人力资源管理、绩效考核、招聘管理和资产管理等功能。 Sentrifugo 3.2版本存在代码问题漏洞，该漏洞源于用户可以在Organization -Announcements标签下分享公告，上传带有共享公告的附件。攻击者可利用该漏洞可以利用此功能上传恶意文件并控制服务器。

Severity

低

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法： https://sourceforge.net/projects/sentrifugo/

Reference

https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html

Impacted products

Name
Sentrifugo Sentrifugo 3.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-26804",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-26804"
    }
  },
  "description": "Sentrifugo\u662f\u4e00\u5957\u4eba\u529b\u8d44\u6e90\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5305\u62ec\u4eba\u529b\u8d44\u6e90\u7ba1\u7406\u3001\u7ee9\u6548\u8003\u6838\u3001\u62db\u8058\u7ba1\u7406\u548c\u8d44\u4ea7\u7ba1\u7406\u7b49\u529f\u80fd\u3002\n\nSentrifugo 3.2\u7248\u672c\u5b58\u5728\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u6237\u53ef\u4ee5\u5728Organization -Announcements\u6807\u7b7e\u4e0b\u5206\u4eab\u516c\u544a\uff0c\u4e0a\u4f20\u5e26\u6709\u5171\u4eab\u516c\u544a\u7684\u9644\u4ef6\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u4ee5\u5229\u7528\u6b64\u529f\u80fd\u4e0a\u4f20\u6076\u610f\u6587\u4ef6\u5e76\u63a7\u5236\u670d\u52a1\u5668\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\nhttps://sourceforge.net/projects/sentrifugo/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-66085",
  "openTime": "2020-11-24",
  "products": {
    "product": "Sentrifugo Sentrifugo 3.2"
  },
  "referenceLink": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html",
  "serverity": "\u4f4e",
  "submitTime": "2020-11-23",
  "title": "Sentrifugo\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\uff08CNVD-2020-66085\uff09"
}

CVE-2020-26804 (GCVE-0-2020-26804)

Vulnerability from cvelistv5 – Published: 2020-11-12 18:52 – Updated: 2024-08-04 16:03

Summary

In Sentrifugo 3.2, users can share an announcement under "Organization -> Announcements" tab. Also, in this page, users can upload attachments with the shared announcements. This "Upload Attachment" functionality is suffered from "Unrestricted File Upload" vulnerability so attacker can upload malicious files using this functionality and control the server.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

https://fatihhcelik.blogspot.com/2020/10/sentrifu…

x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T16:03:22.813Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Sentrifugo 3.2, users can share an announcement under \"Organization -\u003e Announcements\" tab. Also, in this page, users can upload attachments with the shared announcements. This \"Upload Attachment\" functionality is suffered from \"Unrestricted File Upload\" vulnerability so attacker can upload malicious files using this functionality and control the server."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-11-12T18:52:42",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-26804",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Sentrifugo 3.2, users can share an announcement under \"Organization -\u003e Announcements\" tab. Also, in this page, users can upload attachments with the shared announcements. This \"Upload Attachment\" functionality is suffered from \"Unrestricted File Upload\" vulnerability so attacker can upload malicious files using this functionality and control the server."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html",
              "refsource": "MISC",
              "url": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-26804",
    "datePublished": "2020-11-12T18:52:42",
    "dateReserved": "2020-10-07T00:00:00",
    "dateUpdated": "2024-08-04T16:03:22.813Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-66085

CVE-2020-26804 (GCVE-0-2020-26804)

Tags

Sightings

Nomenclature