CVE-2015-5723

EUVD-2022-4834

07.06.2016, 14:06

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local users to execute arbitrary PHP code with additional privileges by leveraging an application with the umask set to 0 and that executes cache entries as code.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 9%

Affected Products (NVD)

Vendor	Product	Version
zend	zend-cache	𝑥 ≤ 2.4.7
zend	zend-cache	2.5.0
zend	zend-cache	2.5.1
zend	zend-cache	2.5.2
debian	debian_linux	7.0
debian	debian_linux	8.0
doctrine-project	object_relational_mapper	𝑥 ≤ 2.4.7
doctrine-project	object_relational_mapper	2.5.0
doctrine-project	object_relational_mapper	2.5.0:alpha1
doctrine-project	object_relational_mapper	2.5.0:alpha2
doctrine-project	object_relational_mapper	2.5.0:beta1
doctrine-project	object_relational_mapper	2.5.0:rc1
doctrine-project	object_relational_mapper	2.5.0:rc2
doctrine-project	doctrinemongodbbundle	3.0.0
zend	zend_framework	𝑥 ≤ 2.4.7
doctrine-project	common	𝑥 ≤ 2.4.2
doctrine-project	common	2.5.0
doctrine-project	common	2.5.0:beta1
doctrine-project	annotations	𝑥 ≤ 1.2.6
doctrine-project	mongodb-odm	𝑥 ≤ 1.0.1
zend	zend_framework	𝑥 ≤ 1.12.15
doctrine-project	cache	𝑥 ≤ 1.3.1
doctrine-project	cache	1.4.0
doctrine-project	cache	1.4.1
zend	zf-apigility-doctrine	𝑥 ≤ 1.0.2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

doctrine

bookworm	2.14.1+dfsg-1 fixed
bullseye	2.8.1+dfsg-3 fixed
sid	2.20.0+dfsg-1 fixed
squeeze	not-affected
trixie	2.20.0+dfsg-1 fixed
wheezy	no-dsa

php-doctrine-annotations

bookworm	2.0.1-1+deb12u1 fixed
bullseye	1.11.2-1+deb11u1 fixed
sid	2.0.2-1 fixed
squeeze	not-affected
trixie	2.0.2-1 fixed
wheezy	no-dsa

php-doctrine-bundle

bullseye	2.2.3-1 fixed
squeeze	not-affected
wheezy	no-dsa

php-doctrine-cache

bookworm	2.2.0-1 fixed
bullseye	1.10.2-2 fixed
sid	2.2.0-4 fixed
squeeze	not-affected
trixie	2.2.0-4 fixed
wheezy	no-dsa

php-doctrine-common

bookworm	3.4.3-1 fixed
bullseye	3.1.1-1 fixed
sid	3.4.5-1 fixed
squeeze	not-affected
trixie	3.4.5-1 fixed
wheezy	no-dsa

Ubuntu Releases

Ubuntu Product

Codename

doctrine

artful	ignored
bionic	not-affected
cosmic	not-affected
disco	not-affected
precise	ignored
trusty	dne
vivid	ignored
wily	ignored
xenial	not-affected
yakkety	ignored
zesty	ignored

php-doctrine-annotations

artful	ignored
bionic	not-affected
cosmic	not-affected
disco	not-affected
precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	not-affected
yakkety	ignored
zesty	ignored

php-doctrine-cache

artful	ignored
bionic	not-affected
cosmic	not-affected
disco	not-affected
precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	not-affected
yakkety	ignored
zesty	ignored

php-doctrine-common

artful	ignored
bionic	not-affected
cosmic	not-affected
disco	not-affected
precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	not-affected
yakkety	ignored
zesty	ignored

Common Weakness Enumeration

CWE-264 -

References

http://framework.zend.com/security/advisory/ZF2015-07

http://www.debian.org/security/2015/dsa-3369

http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2IUUC7HPN4XE5NNTG4MR76OC662XRZUO/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPS7A54FQ2CR6PH4NDR6UIYJIRNFXW67/

http://framework.zend.com/security/advisory/ZF2015-07

http://www.debian.org/security/2015/dsa-3369

http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2IUUC7HPN4XE5NNTG4MR76OC662XRZUO/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPS7A54FQ2CR6PH4NDR6UIYJIRNFXW67/