CVE-2019-11275
01.10.2019, 15:15
Pivotal Application Manager, versions 666.0.x prior to 666.0.36, versions 667.0.x prior to 667.0.22, versions 668.0.x prior to 668.0.21, versions 669.0.x prior to 669.0.13, and versions 670.0.x prior to 670.0.7, contain a vulnerability where a remote authenticated user can create an app with a name such that a csv program can interpret into a formula and gets executed. The malicious user can possibly gain access to a usage report that requires a higher privilege.
| Vendor | Product | Version |
|---|---|---|
| pivotal | apps_manager | 666.0.0 ≤ 𝑥 < 666.0.36 |
| pivotal | apps_manager | 667.0.0 ≤ 𝑥 < 667.0.22 |
| pivotal | apps_manager | 668.0.0 ≤ 𝑥 < 668.0.21 |
| pivotal | apps_manager | 669.0.0 ≤ 𝑥 < 669.0.13 |
| pivotal | apps_manager | 670.0.0 ≤ 𝑥 < 670.0.7 |
| pivotal_software | pivotal_application_service | 2.3.0 ≤ 𝑥 ≤ 2.3.18 |
| pivotal_software | pivotal_application_service | 2.4.0 ≤ 𝑥 ≤ 2.4.14 |
| pivotal_software | pivotal_application_service | 2.5.0 ≤ 𝑥 ≤ 2.5.1 |
| pivotal_software | pivotal_application_service | 2.6.0 ≤ 𝑥 ≤ 2.6.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')The software constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
- CWE-1236 - Improper Neutralization of Formula Elements in a CSV FileThe software saves user-provided information into a Comma-Separated Value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the file is opened by spreadsheet software.