CVE-2018-7667

NameCVE-2018-7667
DescriptionAdminer through 4.3.1 has SSRF via the server parameter.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-1311-1
NVD severityhigh (attack range: remote)
Debian Bugs893668

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
adminer (PTS)jessie3.3.3-1+deb8u1fixed
stretch4.2.5-3+deb9u1fixed
buster, sid4.7.0-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
adminersource(unstable)4.5.0-1high893668
adminersourcejessie3.3.3-1+deb8u1high
adminersourcestretch4.2.5-3+deb9u1high
adminersourcewheezy3.3.3-1+deb7u1highDLA-1311-1

Notes

http://hyp3rlinx.altervista.org/advisories/ADMINER-UNAUTHENTICATED-SERVER-SIDE-REQUEST-FORGERY.txt
https://github.com/vrana/adminer/commit/0fae40fb611b5c8167fa2b8d40bf576a8935a380
adminer 4.4.0 disallows connecting to privileged ports, and thus not "enumerating"
services on (another) host for ports < 1024.
Additionally 4.4.0 rate-limits password-less login attempts from the same
IP address:
https://github.com/vrana/adminer/commit/0e5df34ea87ad34c1bc0ceac162eb86175d611a3

Search for package or bug name: Reporting problems