{
  "id": "CVE-2020-26804",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2020-11-12T19:15:14.973",
  "lastModified": "2020-11-17T15:43:00.507",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "In Sentrifugo 3.2, users can share an announcement under \"Organization -> Announcements\" tab. Also, in this page, users can upload attachments with the shared announcements. This \"Upload Attachment\" functionality is suffered from \"Unrestricted File Upload\" vulnerability so attacker can upload malicious files using this functionality and control the server."
    },
    {
      "lang": "es",
      "value": "En Sentrifugo versi\u00f3n 3.2, los usuarios pueden compartir un anuncio en la pesta\u00f1a \"Organization -&gt; Announcements\".&#xa0;Adem\u00e1s, en esta p\u00e1gina, los usuarios pueden cargar archivos adjuntos con los anuncios compartidos.&#xa0;Esta funcionalidad \"Upload Attachment\" est\u00e1 afectada por la vulnerabilidad de \"Unrestricted File Upload\", por lo que el atacante puede cargar archivos maliciosos utilizando esta funcionalidad y controlar el servidor"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.5
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-434"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:sapplica:sentrifugo:3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A58D689D-23A7-4757-ACF6-203013E83667"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://fatihhcelik.blogspot.com/2020/10/sentrifugo-version-32-rce-authenticated.html",
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ]
    }
  ]
}