Server-Side Request Forgery (SSRF) in phpMyAdmin

#VU39763 Server-Side Request Forgery (SSRF) in phpMyAdmin

Published: 2017-01-31 | Updated: 2020-08-08

Vulnerability identifier: #VU39763

Vulnerability risk: High

CVSSv3.1: 7.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2016-6621

CWE-ID: CWE-918

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
phpMyAdmin
Web applications / Remote management & hosting panels

Vendor: phpMyAdmin

Description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors.

Mitigation
Install update from vendor's website.

Vulnerable software versions

phpMyAdmin: 4.4.0 - 4.4.15.9, 4.6.0 - 4.6.5

External links
http://www.securityfocus.com/bid/95914
http://lists.debian.org/debian-lts-announce/2018/07/msg00006.html
http://www.phpmyadmin.net/security/PMASA-2016-44/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in phpMyAdmin

OpenSUSE Linux update for phpMyAdmin