Miggo Logo
Miggo Vulnerability Database
CVE-2019-8232

CVE-2019-8232:
Magento 2 Community Edition RCE Vulnerability

6.6

CVSS Score
3.1

Basic Information

CVE ID
CVE-2019-8232
GHSA ID
GHSA-6vc8-3xf2-qrxx
EPSS Score
0.3602%
CWE
CWE-362
Published
5/24/2022
Updated
9/26/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
magento/community-editioncomposer>= 2.2.0, < 2.2.102.2.10
magento/community-editioncomposer>= 2.3.0, < 2.3.2-p12.3.2-p1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability involves a race condition during the import file upload process, leading to webserver configuration modification. The Uploader::move() method is responsible for moving uploaded files to their destination. If this method does not use atomic operations or proper file locking, an attacker with admin import privileges can exploit the timing window to replace the file with a malicious configuration, triggering RCE. This aligns with the CWE-362 race condition description and the attack vector described in the advisory.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

In M***nto prior to *.*.*.*, M***nto prior to *.**.*.*, M***nto *.* prior to *.*.**, *n* M***nto *.* prior to *.*.* or *.*.*-p*, *n *ut**nti**t** us*r wit* **ministr*tiv* privil***s *or t** import ***tur* **n *x**ut* *r*itr*ry *o** t*rou** * r*** *on

Reasoning

T** vuln*r**ility involv*s * r*** *on*ition *urin* t** import *il* uplo** pro**ss, l***in* to w**s*rv*r *on*i*ur*tion mo*i*i**tion. T** `Uplo***r::mov*()` m*t*o* is r*sponsi*l* *or movin* uplo**** *il*s to t**ir **stin*tion. I* t*is m*t*o* *o*s not u