CVE-2020-28948 | DrupalÔ¶³Ì´úÂëÖ´ÐÐÎó²îͨ¸æ

Ðû²¼Ê±¼ä 2020-11-26

0x00 Îó²î¸ÅÊö

²úÆ·Ãû³Æ

CVE ID

Àà ÐÍ

Îó²îÆ·¼¶

Ô¶³ÌʹÓÃ

Drupal core

CVE-2020-28948

Ô¶³Ì´úÂëÖ´ÐÐ

¸ßΣ

ÊÇ

CVE-2020-28949

Ô¶³Ì´úÂëÖ´ÐÐ

¸ßΣ

ÊÇ

 

0x01 Îó²îÏêÇé

 

image.png

 

DrupalÊÇPHP±àдµÄ¿ªÔ´ÄÚÈÝÖÎÀí¿ò¼Ü£¨CMF£©£¬£¬£¬£¬ £¬ËüÓÉÄÚÈÝÖÎÀíϵͳ£¨CMS£©ºÍPHP¿ª·¢¿ò¼Ü£¨Framework£©ÅäºÏ×é³É¡£¡£¡£¡£¡£¡£¡£PEARÈ«³ÆΪPHPÀ©Õ¹ÓëÓ¦Óÿ⣬£¬£¬£¬ £¬ËüÊÇÒ»¸öPHPÀ©Õ¹¼°Ó¦ÓõÄÒ»¸ö´úÂë¿ÍÕ»¡£¡£¡£¡£¡£¡£¡£

2020Äê11ÔÂ25ÈÕ,DrupalÐû²¼Ç徲ͨ¸æ£¬£¬£¬£¬ £¬DrupalÖб£´æÁ½¸öÔ¶³Ì´úÂëÖ´ÐÐÎó²î£¨CVE-2020-28948ºÍCVE-2020-28949£©¡£¡£¡£¡£¡£¡£¡£ÏêÇéÈçÏ£º

DrupalÔ¶³Ì´úÂëÖ´ÐÐÎó²î£¨CVE-2020-28948£©

DurpalʹÓõÄPEAR Archive_TarÊÇÒ»¿îÓÃÓÚÔÚPHPÖн¨Éè¡¢ÌáÈ¡ºÍÁгötarÎļþµÄ¹¤¾ßÀà¡£¡£¡£¡£¡£¡£¡£ÓÉÓÚ1.4.10¼°Ö®Ç°µÄArchive_TarÀàÔÚ´¦Öóͷ£Èç.tar¡¢.tar.gz¡¢.bz2»ò.tlzµÈÃûÌõÄѹËõ°üʱ¹ýÂ˲»ÑÏ£¬£¬£¬£¬ £¬¿ÉÄܵ¼Ö±£´æPHAR·´ÐòÁл¯Îó²î£¬£¬£¬£¬ £¬´Ó¶øÔì³ÉÔ¶³Ì´úÂëÖ´ÐС£¡£¡£¡£¡£¡£¡£

 

DrupalÔ¶³Ì´úÂëÖ´ÐÐÎó²î£¨CVE-2020-28949£©

ÓÉÓÚ1.4.10¼°Ö®Ç°µÄArchive_TarÀà¾ßÓУº//ÎļþÃûɨ³ý¹¦Ð§£¬£¬£¬£¬ £¬µ«¸Ã¹¦Ð§½öÄÜ·À»¤phar://αЭÒé¹¥»÷£¬£¬£¬£¬ £¬ÆäËüÈκÎÁ÷°ü×°Æ÷¹¥»÷£¨Èçfile£º//£©ÈÔÈ»¿ÉÒÔ±»¹¥»÷ÕßÀÖ³ÉʹÓᣡ£¡£¡£¡£¡£¡£

 

Ó°Ïì¹æÄ££º

Drupal 7

Drupal 8.8¼°Ö®Ç°°æ±¾

Drupal 8.9

Drupal 9.0

 

0x02 ´¦Öóͷ£½¨Òé

ÏÖÔÚDrupalÍŶÓÒѾ­Ðû²¼ÁËÇå¾²¸üУ¬£¬£¬£¬ £¬½¨ÒéÉý¼¶ÖÁÈçÏ°汾¡£¡£¡£¡£¡£¡£¡£

Ó°Ïì°æ±¾

ÐÞ¸´°æ±¾

ÏÂÔØÁ´½Ó

Drupal 7

Drupal   7.75

https://www.drupal.org/project/drupal/releases/7.75

Drupal   8.8¼°Ö®Ç°°æ±¾

Drupal   8.8.12

https://www.drupal.org/project/drupal/releases/8.8.12

Drupal   8.9

Drupal   8.9.10

https://www.drupal.org/project/drupal/releases/8.9.10

Drupal   9.0

Drupal   9.0.9

https://www.drupal.org/project/drupal/releases/9.0.9

 

»º½â²½·¥£º

եȡÓû§ÉÏ´«.tar¡¢.tar.gz¡¢.bz2»ò.tlzÀàÐ͵ÄѹËõ°ü¡£¡£¡£¡£¡£¡£¡£

 

0x03 ²Î¿¼Á´½Ó

https://www.drupal.org/sa-core-2020-013

https://www.tenable.com/cve/CVE-2020-28948

https://nvd.nist.gov/vuln/detail/CVE-2020-28948

 

0x04 ʱ¼äÏß

2020-11-25  DrupalÐû²¼Ç徲ͨ¸æ

2020-11-26  VSRCÐû²¼Ç徲ͨ¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö±ê×¼¹ÙÍø£ºhttp://www.first.org/cvss/



image.png