Adminer through 4.3.1 has SSRF via the server parameter.

The version of Adminer installed on the remote host suffers from a Server-Side Request Forgery (SSRF) flaw via the server parameter which may permit clients to make onward connections to arbitrary systems/ports & can be used to potentially bypass firewalls to identify internal resource and perform portscanning. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

It was discovered that there was a server-side request forgery exploit in adminer, a web-based database administration tool.

Adminer allowed unauthenticated connections to be initiated to arbitrary systems and ports which could bypass external firewalls to identify internal hosts or perform port scanning of other servers.

For Debian 7 'Wheezy', this issue has been fixed in adminer version 3.3.3-1+deb7u1.

We recommend that you upgrade your adminer packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for adminer fixes the following issues :

  - Sync up conditional sub-packages with devel package to     disable uninstallable pacakges for boo#1002214.

  - Update to version v4.4.0 for boo#1083948 to resolve     CVE-2018-7667

ID	Name	Product	Family	Severity
112911	Adminer < 4.4.0 Server-Side Request Forgery	Web App Scanning	Component Vulnerability	critical
108567	Debian DLA-1311-1 : adminer security update	Nessus	Debian Local Security Checks	critical
108354	openSUSE Security Update : adminer (openSUSE-2018-253)	Nessus	SuSE Local Security Checks	critical

Detections

Analytics

CVE-2018-7667

critical

Tenable Plugins

critical

critical

critical