SCA: security update for pimcore/pimcore (GHSA-j5c3-r84f-9596)

medium Tenable Cloud Security Plugin ID 416151

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the
`/admin/misc/script-proxy` API endpoint that is accessible by an authenticated administrator user is
vulnerable to arbitrary JavaScript and CSS file read via the `scriptPath` and `scripts` parameters. The
`scriptPath` parameter is not sanitized properly and is vulnerable to path traversal attack. Any
JavaScript/CSS file from the application server can be read by specifying sufficient number of `../`
patterns to go out from the application webroot followed by path of the folder where the file is located
in the "scriptPath" parameter and the file name in the "scripts" parameter. The JavaScript file is
successfully read only if the web application has read access to it. Users should update to version
10.5.21 to receive a patch or, as a workaround, apply the patch manual. (CVE-2023-30852)

See Also

https://github.com/advisories/GHSA-j5c3-r84f-9596

Plugin Details

Severity: Medium

ID: 416151

Version: Revision 1.9

Type: Local

Family: SCA Checks

Published: 1/23/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.51

Vendor

Vendor Severity: Medium

CVSS v2

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 4.5

Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N

CVSS Score Source: CVE-2023-30852

CVSS v3

Risk Factor: Medium

Base Score: 4.9

Temporal Score: 4.3

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 4/27/2023

Vulnerability Publication Date: 4/27/2023

Reference Information

CVE: CVE-2023-30852

cwe: CWE-22