Security-Blog

Die Security-Gruppe informiert über behobene Sicherheitslücken in ILIAS

ILIAS 10.8

Tokar, David [tokard], Wolf, Fabian [fwolf] - Yesterday, 17:00

Following 9 security issues have been resolved:

0047258: SOAP: Unauthorized function call
0047472: SQL injection in SOAP
0047581: Broken Access Control in SOAP
0047691: SQL injection in ILIAS MyStaff
0047692: Fixes a path traversal vulnerability in the custom icon upload
0047749: Fix Sanitation of Answer Options in the Presentation of Statistics in the View to Correct Points.
0047770: Tracking: validate sort field from LP participants table
0047778: Authenticated SQLi in SCORM2004
0047787: Add an AccessControl-Check to TileImageUploadHandler

0047258: SOAP: Unauthorized function call

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	6.9
Reported By	Abdelwahed (Codean Labs)

0047472: SQL injection in SOAP

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	7.1
Reported By	André Schweigert (FAU\|ILIAS)

0047581: Broken Access Control in SOAP

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	8.7
Reported By	André Schweigert ( FAU \| ILIAS )

0047691: SQL injection in ILIAS MyStaff

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	9.3
Reported By	Jan Kahmen Co-Founder, Managing Partner (turingpoint GmbH)

0047692: Fixes a path traversal vulnerability in the custom icon upload

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	-
Reported By	Ilja Lukin, Fachhochschule Dortmund University of Applied Sciences and Arts

0047749: Fix Sanitation of Answer Options in the Presentation of Statistics in the View to Correct Points.

Affected Version(s)	10.7, 11.0
Fixed Version(s)	10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	-
Reported By	-

0047770: Tracking: validate sort field from LP participants table

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	8.5
Reported By	André Schweigert (FAU\|ILIAS)

0047778: Authenticated SQLi in SCORM2004

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	8.1
Reported By	André Schweigert (FAU\|ILIAS)

0047787: Add an AccessControl-Check to TileImageUploadHandler

Affected Version(s)	9.19, 10.7, 11.0
Fixed Version(s)	9.20, 10.8, 11.1, 12.0 Alpha
CVSS Score 4.0	9.8
Reported By	Johannes Heidtmann and Philipp Schur of larp.win

Security-Blog

Functions

ILIAS 10.8