CVE Catalog

CVE-2016-15044

CriticalCVSS 9.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.41%

70th percentile - higher than 70% of all known CVEs

Summary

A remote code execution vulnerability in Kaltura versions prior to 11.1.0-2 is caused by unsafe deserialization of user-controlled data in the keditorservices module. An unauthenticated attacker can send a crafted serialized PHP object in the kdata GET parameter to the redirectWidgetCmd endpoint, leading to arbitrary PHP code execution in the context of the web server process.

Risk Assessment

The risk for the organization includes full compromise of the web server, potentially leading to data theft, content modification, or further attacks on internal infrastructure.

Recommendation

It is recommended to immediately upgrade Kaltura to version 11.1.0-2 or later, which includes a fix that eliminates the unsafe deserialization.

Original NVD description (English source)

A remote code execution vulnerability exists in Kaltura versions prior to 11.1.0-2 due to unsafe deserialization of user-controlled data within the keditorservices module. An unauthenticated remote attacker can exploit this issue by sending a specially crafted serialized PHP object in the kdata GET parameter to the redirectWidgetCmd endpoint. Successful exploitation leads to execution of arbitrary PHP code in the context of the web server process.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS