Miggo Logo
Miggo Vulnerability Database
CVE-2024-24822

CVE-2024-24822: Pimcore Admin Classic Bundle permissions are not getting checked when working with tags

6.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2024-24822
GHSA ID
GHSA-3rfr-mpfj-2jwq
EPSS Score
0.00067%
CWE
CWE-862
Published
2/7/2024
Updated
2/7/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
pimcore/admin-ui-classic-bundlecomposer< 1.3.31.3.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from missing authorization checks in tag manipulation endpoints. The GitHub commit diff explicitly shows the addition of $this->checkPermission('tags_configuration') calls in addAction, deleteAction and updateAction methods, indicating these were the vulnerable points. These controller actions handled tag operations without verifying user permissions prior to the patch, enabling unauthorized modifications through direct API access.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Imp**t You **n *r**t*, **l*t* *t*. t**s wit*out **vin* t** p*rmission to *o so. T*is vuln*r**ility *llows *n *tt**k*r to p*r*orm *rok*n ****ss *ontrol *n* *** t**s to **min p*n*l *n* *** *umy **t*. On* **n *o t*is *s intru**r *n* *** t*xt p*r*m*t

Reasoning

T** vuln*r**ility st*ms *rom missin* *ut*oriz*tion ****ks in t** m*nipul*tion *n*points. T** *it*u* *ommit *i** *xpli*itly s*ows t** ***ition o* `$t*is->****kP*rmission('t**s_*on*i*ur*tion')` **lls in `*****tion`, `**l*t***tion` *n* `up**t***tion` m*