NVD Vulnerability Detail

CVE-2019-14749

Summary	An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. CSV (aka Formula) injection exists in the export spreadsheets functionality. These spreadsheets are generated dynamically from unvalidated or unfiltered user input in the Name and Internal Notes fields in the Users tab, and the Issue Summary field in the tickets tab. This allows other agents to download data in a .csv file format or .xls file format. This is used as input for spreadsheet applications such as Excel and OpenOffice Calc, resulting in a situation where cells in the spreadsheets can contain input from an untrusted source. As a result, the end user who is accessing the exported spreadsheet can be affected.
Publication Date	Aug. 8, 2019, 2:15 a.m.
Registration Date	Jan. 26, 2021, 11:39 a.m.
Last Update	Nov. 21, 2024, 1:27 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	http://packetstormsecurity.com/files/154004/osTicket-1.12-Formula-Injection.html	Third Party Advisory VDB Entry
2	http://packetstormsecurity.com/files/154004/osTicket-1.12-Formula-Injection.html	Third Party Advisory VDB Entry
3	https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249	Patch Third Party Advisory
4	https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249	Patch Third Party Advisory
5	https://github.com/osTicket/osTicket/releases/tag/v1.10.7	Release Notes Third Party Advisory
6	https://github.com/osTicket/osTicket/releases/tag/v1.10.7	Release Notes Third Party Advisory
7	https://github.com/osTicket/osTicket/releases/tag/v1.12.1	Release Notes Third Party Advisory
8	https://github.com/osTicket/osTicket/releases/tag/v1.12.1	Release Notes Third Party Advisory
9	https://www.exploit-db.com/exploits/47225	Third Party Advisory VDB Entry
10	https://www.exploit-db.com/exploits/47225	Third Party Advisory VDB Entry

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-1236	CSV ファイル内の数式要素の不適切な中和	https://cwe.mitre.org/data/definitions/1236.html
2	CWE-1236	CSV ファイル内の数式要素の不適切な中和	https://cwe.mitre.org/data/definitions/1236.html

JVN Vulnerability Information

osTicket におけるインジェクションに関する脆弱性

Title	osTicket におけるインジェクションに関する脆弱性
Summary	osTicket には、インジェクションに関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 25, 2019, midnight
Registration Date	Aug. 15, 2019, 5:58 p.m.
Last Update	Aug. 15, 2019, 5:58 p.m.

Affected System

osTicket

osTicket 1.10.7 未満

osTicket 1.12.1 未満の 1.12.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2019-14749	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14749
National Vulnerability Database (NVD)
2	CVE-2019-14749	https://nvd.nist.gov/vuln/detail/CVE-2019-14749

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-74	https://cwe.mitre.org/data/definitions/74.html

ベンダー情報

No	Name	URL
GitHub
1	security: CSV Formula Injection	https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249
2	v1.10.7	https://github.com/osTicket/osTicket/releases/tag/v1.10.7
3	v1.12.1	https://github.com/osTicket/osTicket/releases/tag/v1.12.1

Change Log

No	Changed Details	Date of change
1	[2019年08月15日] 掲載	Aug. 15, 2019, 5:58 p.m.