CVE-2018-7667

NameCVE-2018-7667
DescriptionAdminer through 4.3.1 has SSRF via the server parameter.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-1311-1
Debian Bugs893668

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
adminer (PTS)buster4.7.1-1+deb10u1fixed
bullseye4.7.9-2fixed
bookworm4.8.1-1fixed
sid, trixie4.8.1-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
adminersourcewheezy3.3.3-1+deb7u1DLA-1311-1
adminersourcejessie3.3.3-1+deb8u1
adminersourcestretch4.2.5-3+deb9u1
adminersource(unstable)4.5.0-1893668

Notes

http://hyp3rlinx.altervista.org/advisories/ADMINER-UNAUTHENTICATED-SERVER-SIDE-REQUEST-FORGERY.txt
https://github.com/vrana/adminer/commit/0fae40fb611b5c8167fa2b8d40bf576a8935a380
adminer 4.4.0 disallows connecting to privileged ports, and thus not "enumerating"
services on (another) host for ports < 1024.
Additionally 4.4.0 rate-limits password-less login attempts from the same
IP address:
https://github.com/vrana/adminer/commit/0e5df34ea87ad34c1bc0ceac162eb86175d611a3
Search for package or bug name: Reporting problems