Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-32633

Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can access untrusted modules indirectly through Python modules that are available for direct use. By default, only users with the Manager role can add or edit Zope Page Templates through the web, but sites that allow untrusted users to add/edit Zope Page Templates through the web are at risk from this vulnerability. The problem has been fixed in Zope 5.2 and 4.6. As a workaround, a site administrator can restrict adding/editing Zope Page Templates through the web using the standard Zope user/role permission mechanisms. Untrusted users should not be assigned the Zope Manager role and adding/editing Zope Page Templates through the web should be restricted to trusted users only.

Published

2021-05-21T14:15:07.977

Last Modified

2024-11-21T06:07:25.347

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.0

Impact Score

6.4

Weaknesses

Type: Secondary
CWE-22
Type: Primary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	plone	plone	≤ 4.3.20	Yes
Application	plone	plone	≤ 5.2.4	Yes
Application	zope	zope	< 4.6	Yes
Application	zope	zope	< 5.2	Yes

References

http://www.openwall.com/lists/oss-security/2021/05/21/1 Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2021/05/22/1 Mailing List, Third Party Advisory ([email protected])
https://cyllective.com/blog/post/plone-authenticated-rce-cve-2021-32633/ Exploit, Third Party Advisory ([email protected])
https://github.com/zopefoundation/Zope/commit/1f8456bf1f908ea46012537d52bd7e752a532c91 Patch, Third Party Advisory ([email protected])
https://github.com/zopefoundation/Zope/security/advisories/GHSA-5pr9-v234-jw36 Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2021/05/21/1 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2021/05/22/1 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cyllective.com/blog/post/plone-authenticated-rce-cve-2021-32633/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/zopefoundation/Zope/commit/1f8456bf1f908ea46012537d52bd7e752a532c91 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/zopefoundation/Zope/security/advisories/GHSA-5pr9-v234-jw36 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)