CVE-2022-21829

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-21829

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-21829.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-21829

Aliases

GHSA-6xc4-7fmm-65q2

Published

2022-06-24T15:15:10.143Z

Modified

2026-02-11T14:39:20.321734Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Concrete CMS Versions 9.0.0 through 9.0.2 and 8.5.7 and below can download zip files over HTTP and execute code from those zip files which could lead to an RCE. Fixed by enforcing ‘concrete_secure’ instead of ‘concrete’. Concrete now only makes requests over https even a request comes in via http. Concrete CMS security team ranked this 8 with CVSS v3.1 vector: AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Credit goes to Anna for reporting HackerOne 1482520.

References

Affected packages

Git / github.com/concretecms/concretecms

Affected ranges

Type: GIT
Repo: https://github.com/concretecms/concretecms
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

f42593b79d0b4e1af1bdca3ead8235ab2c2757a6

Introduced

b3774abddd475b4ba98b637402506f7a5ebd90ea

Fixed

f1a0eb94bc70d74c58ec8746a7a940cf8257bf22

Affected versions

9.*

9.0.0

9.0.1

9.0.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-21829.json"