CVE-2020-5576

EUVD-2020-26738

14.05.2020, 02:15

Cross-site request forgery (CSRF) vulnerability in Movable Type series (Movable Type 7 r.4606 (7.2.1) and earlier (Movable Type 7), Movable Type Advanced 7 r.4606 (7.2.1) and earlier (Movable Type Advanced 7), Movable Type for AWS 7 r.4606 (7.2.1) and earlier (Movable Type for AWS 7), Movable Type 6.5.3 and earlier (Movable Type 6.5), Movable Type Advanced 6.5.3 and earlier (Movable Type Advanced 6.5), Movable Type 6.3.11 and earlier (Movable Type 6.3), Movable Type Advanced 6.3.11 and earlier (Movable Type 6.3), Movable Type Premium 1.29 and earlier, and Movable Type Premium Advanced 1.29 and earlier) allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CSRF

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 35%

Affected Products (NVD)

Vendor	Product	Version
sixapart	movable_type	𝑥 ≤ 1.29
sixapart	movable_type	𝑥 ≤ 1.29
sixapart	movable_type	6.3 ≤ 𝑥 ≤ 6.3.11
sixapart	movable_type	6.3 ≤ 𝑥 ≤ 6.3.11
sixapart	movable_type	6.5.0 ≤ 𝑥 ≤ 6.5.3
sixapart	movable_type	6.5.0 ≤ 𝑥 ≤ 6.5.3
sixapart	movable_type	7.0 ≤ 𝑥 ≤ 7.2.1
sixapart	movable_type	7.0 ≤ 𝑥 ≤ 7.2.1
sixapart	movable_type	7.0 ≤ 𝑥 ≤ 7.2.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

movabletype-opensource

bionic	dne
eoan	dne
focal	dne
precise	ignored
trusty	dne
xenial	dne

Common Weakness Enumeration

CWE-352 - Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References

https://jvn.jp/en/jp/JVN28806943/index.html

https://movabletype.org/news/2020/05/mt-730-660-6312-released.html

https://jvn.jp/en/jp/JVN28806943/index.html

https://movabletype.org/news/2020/05/mt-730-660-6312-released.html