CVE-2019-19826 - Vulnerability Details - OpenCVE

The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Drupal	Views Dynamic Field

Configuration 1 [-]

OR	cpe:2.3:a:drupal:views_dynamic_field::::::drupal::*
	cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha1::::drupal::*
	cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha2::::drupal::*
	cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha3::::drupal::*
	cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha4::::drupal::*

No data.

References

Link	Providers
https://www.drupal.org/project/views_dynamic_fields/issues/3056600

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-12-16T22:21:59

Updated: 2024-08-05T02:25:12.689Z

Reserved: 2019-12-16T00:00:00

Link: CVE-2019-19826

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-12-16T23:15:11.313

Modified: 2024-11-21T04:35:28.570

Link: CVE-2019-19826

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible."}], "metrics": [{"cvssV3_0": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AC:H/AV:N/A:H/C:H/I:H/PR:N/S:U/UI:N", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-12-16T22:21:59", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-19826", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible."}]}, "impact": {"cvss": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AC:H/AV:N/A:H/C:H/I:H/PR:N/S:U/UI:N", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600", "refsource": "MISC", "url": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T02:25:12.689Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-19826", "datePublished": "2019-12-16T22:21:59", "dateReserved": "2019-12-16T00:00:00", "dateUpdated": "2024-08-05T02:25:12.689Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:drupal:views_dynamic_field:*:*:*:*:*:drupal:*:*", "matchCriteriaId": "4A7D5481-1947-4166-B8C1-25F1DD47114B", "versionEndIncluding": "6.x-1.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha1:*:*:*:drupal:*:*", "matchCriteriaId": "9E5AACF9-22D6-4B96-9E62-0CFF7036A0A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha2:*:*:*:drupal:*:*", "matchCriteriaId": "D66B669D-271E-4391-9DC8-FE93E2C2EA3D", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha3:*:*:*:drupal:*:*", "matchCriteriaId": "B79A2AD3-1ECE-4D0C-8B42-2EA672644B53", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:views_dynamic_field:7.x-1.0:alpha4:*:*:*:drupal:*:*", "matchCriteriaId": "29C413B9-9C27-4995-B203-BF009F0A7EB5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Views Dynamic Fields module through 7.x-1.0-alpha4 for Drupal makes insecure unserialize calls in handlers/views_handler_filter_dynamic_fields.inc, as demonstrated by PHP object injection, involving a field_names object and an Archive_Tar object, for file deletion. Code execution might also be possible."}, {"lang": "es", "value": "El m\u00f3dulo Views Dynamic Fields versiones hasta 7.x-1.0-alpha4 para Drupal, realiza llamadas no serializadas no seguras en el archivo handlers/views_handler_filter_dynamic_fields.inc, como es demostrado mediante la inyecci\u00f3n de objetos PHP, involucrando un objeto field_names y un objeto Archive_Tar, para la eliminaci\u00f3n de archivos. Una ejecuci\u00f3n de c\u00f3digo tambi\u00e9n podr\u00eda ser posible."}], "id": "CVE-2019-19826", "lastModified": "2024-11-21T04:35:28.570", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "cve@mitre.org", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-12-16T23:15:11.313", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.drupal.org/project/views_dynamic_fields/issues/3056600"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-502"}], "source": "nvd@nist.gov", "type": "Primary"}]}