CVE-2024-51991

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-51991
October is a Content Management System (CMS) and web platform. A vulnerability in versions prior to 3.7.5 affects authenticated administrators with sites that have the `media.clean_vectors` configuration enabled. This configuration will sanitize SVG files uploaded using the media manager. This vulnerability allows an authenticated user to bypass this protection by uploading it with a permitted extension (for example, .jpg or .png) and later modifying it to the .svg extension. This vulnerability assumes a trusted user will attack another trusted user and cannot be actively exploited without access to the administration panel and interaction from the other user. This issue has been patched in v3.7.5.

4.9 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://github.com/octobercms/october/security/advisories/GHSA-96hh-8hx5-cpw7 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*
History

03 Sep 2025, 18:54

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 4.9
First Time Octobercms october
Octobercms
CPE cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*
Summary
  • (es) October es un Sistema de Gestión de Contenido (CMS) y una plataforma web. Una vulnerabilidad en versiones anteriores a la 3.7.5 afecta a los administradores autenticados de sitios que tienen habilitada la configuración `media.clean_vectors`. Esta configuración depura los archivos SVG subidos mediante el gestor de contenido multimedia. Esta vulnerabilidad permite a un usuario autenticado eludir esta protección subiéndolos con una extensión permitida (por ejemplo, .jpg o .png) y posteriormente modificándolos a la extensión .svg. Esta vulnerabilidad presupone que un usuario de confianza atacará a otro usuario de confianza y no puede explotarse activamente sin acceso al panel de administración ni interacción del otro usuario. Este problema se ha corregido en la v3.7.5.
References () https://github.com/octobercms/october/security/advisories/GHSA-96hh-8hx5-cpw7 - () https://github.com/octobercms/october/security/advisories/GHSA-96hh-8hx5-cpw7 - Patch, Vendor Advisory

05 May 2025, 17:18

Type Values Removed Values Added
New CVE
Information

Published : 2025-05-05 17:18

Updated : 2025-09-03 18:54

NVD link : CVE-2024-51991

Mitre link : CVE-2024-51991

CVE.ORG link : CVE-2024-51991

JSON object : View

Products Affected

octobercms

  • october
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type