CVEbaza.plSłownik CWECWE-178
Common Weakness Enumeration

CWE-178

Improper Handling of Case Sensitivity

Kategoria: BaseCVE: 92
Opis

Produkt nie uwzględnia prawidłowo różnic w wrażliwości na wielkość liter podczas dostępu do zasobu lub określania jego właściwości, co prowadzi do niespójnych wyników. Może to prowadzić do problemów bezpieczeństwa, takich jak obejście kontroli dostępu lub manipulacja zasobami.

Description (EN)

The product does not properly account for differences in case sensitivity when accessing or determining the properties of a resource, leading to inconsistent results.

Podatności CVE z CWE-178 (92)
9.9
CVSS
CRITICAL
CVE-2026-40453

Niekompletna poprawka dla CVE-2025-27636 pozostawiła pięć implementacji HeaderFilterStrategy w Apache Camel podatnymi na wstrzykiwanie wewnętrznych nagłówków Camel z użyciem wariantów wielkości liter. Podatność o ocenie CVSS 9.9 umożliwia zdalne wykonanie kodu oraz zapis dowolnych plików na serwerze.

pub. 2026-04-27
9.8
CVSS
CRITICAL
CVE-2026-47323

Podatność w komponentach camel-cxf i camel-knative frameworka Apache Camel umożliwia nieuwierzytelnionemu atakującemu wstrzyknięcie wewnętrznych nagłówków Camel przez żądania HTTP. W efekcie możliwe jest zdalne wykonanie kodu (RCE) lub zapis dowolnych plików na serwerze.

pub. 2026-05-19
9.8
CVSS
CRITICAL
CVE-2026-28292

Biblioteka `simple-git` (wersje 3.15.0–3.22.x oraz 3.23.1–3.32.2) zawiera podatność umożliwiającą zdalne wykonanie kodu (RCE) poprzez command injection. Podatność pozwala atakującemu ominąć poprawki wprowadzone dla dwóch wcześniejszych podatności (CVE-2022-25860 i CVE-2022-25912) i przejąć pełną kontrolę nad maszyną hosta.

pub. 2026-03-10
9.8
CVSS
CRITICAL
CVE-2024-5699

Przeglądarka Mozilla Firefox niepoprawnie obsługiwała prefiksy cookie takie jak `__Secure`, ignorując je w przypadku niezgodności wielkości liter, zamiast stosować porównanie bez uwzględnienia wielkości liter zgodnie ze specyfikacją. Mogło to prowadzić do nieprzestrzegania przez przeglądarkę reguł bezpieczeństwa określonych przez te prefiksy.

pub. 2024-06-11
9.8
CVSS
CRITICAL
CVE-2023-3545

Podatność w Chamilo LMS (wersje do 1.11.20 włącznie) na instalacjach Windows z Apache pozwala nieuwierzytelnionemu atakującemu ominąć zabezpieczenia przesyłania plików poprzez upload pliku `.htaccess`. Skutkuje to możliwością zdalnego wykonania kodu (RCE) bez jakiegokolwiek logowania.

pub. 2023-11-28
9.8
CVSS
CRITICAL
CVE-2022-29604

An issue was discovered in ONOS 2.5.1. An intent with an uppercase letter in a device ID shows the CORRUPT state, which is misleading to a network operator. Improper handling of case sensitivity causes inconsistency between intent and flow rules in the network.

pub. 2023-04-20
9.8
CVSS
CRITICAL
CVE-2020-12812

An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication (FortiToken) if they changed the case of their username.

pub. 2020-07-24🚩 CISA KEV⚡ EXPLOIT
9.8
CVSS
CRITICAL
CVE-2018-9845

Etherpad Lite before 1.6.4 is exploitable for admin access.

pub. 2018-04-29
9.8
CVSS
CRITICAL
CVE-2005-0269

The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that include uppercase letters.

pub. 2005-05-02
9.8
CVSS
CRITICAL
CVE-2004-2154

CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.

pub. 2004-12-31
9.8
CVSS
CRITICAL
CVE-2004-2214

Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to bypass access restrictions via a URI with mixed case characters.

pub. 2004-12-31
9.8
CVSS
CRITICAL
CVE-2002-1820

register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."

pub. 2002-12-31
9.8
CVSS
CRITICAL
CVE-2002-2119

Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.

pub. 2002-12-31
9.8
CVSS
CRITICAL
CVE-2001-0766

Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.

pub. 2001-10-18
8.8
CVSS
HIGH
CVE-2026-53721

Nuxt is an open-source web development framework for Vue.js. From versions 3.11.0 to before 3.21.7 and 4.0.0 to before 4.4.7, there is a route-rule middleware bypass via case-sensitivity mismatch between vue-router and the routeRules matcher. This issue has been patched in versions 3.21.7 and 4.4.7.

pub. 2026-06-12
8.8
CVSS
HIGH
CVE-2023-4759

Arbitrary File Overwrite in Eclipse JGit <= 6.6.0 In Eclipse JGit, all versions <= 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive filesystem, or when a checkout from a clone of such a repository is performed on a case-insensitive filesystem. This can happen on checkout (DirCacheCheckout), merge (ResolveMerger via its WorkingTreeUpdater), pull (PullCommand using merge), and when applying a patch (PatchApplier). This can be exploited for remote code execution (RCE), for instance if the file written outside the working tree is a git filter that gets executed on a subsequent git command. The issue occurs only on case-insensitive filesystems, like the default filesystems on Windows and macOS. The user performing the clone or checkout must have the rights to create symbolic links for the problem to occur, and symbolic links must be enabled in the git configuration. Setting git configuration option core.symlinks = false before checking out avoids the problem. The issue was fixed in Eclipse JGit version 6.6.1.202309021850-r and 6.7.0.202309050840-r, available via Maven Central https://repo1.maven.org/maven2/org/eclipse/jgit/  and repo.eclipse.org https://repo.eclipse.org/content/repositories/jgit-releases/ . A backport is available in 5.13.3 starting from 5.13.3.202401111512-r. The JGit maintainers would like to thank RyotaK for finding and reporting this issue.

pub. 2023-09-12
8.8
CVSS
HIGH
CVE-2021-25036

The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue, which was discovered during an internal audit by the Jetpack Scan team, and may grant bad actors access to protected REST API endpoints they shouldn’t have access to. This could ultimately enable users with low-privileged accounts, like subscribers, to perform remote code execution on affected sites.

pub. 2022-01-17
8.8
CVSS
HIGH
CVE-2021-24347

The SP Project & Document Manager WordPress plugin before 4.22 allows users to upload files, however, the plugin attempts to prevent php and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovered that php files could still be uploaded by changing the file extension's case, for example, from "php" to "pHP".

pub. 2021-06-14
8.8
CVSS
HIGH
CVE-2019-6289

uploads/include/dialog/select_soft.php in DedeCMS V57_UTF8_SP2 allows remote attackers to execute arbitrary PHP code by uploading with a safe file extension and then renaming with a mixed-case variation of the .php extension, as demonstrated by the 1.pHP filename.

pub. 2019-01-15
8.7
CVSS
HIGH
CVE-2026-46392

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0 of HAX CMS PHP, the `saveFile` endpoint validates upload extensions case-insensitively and writes the filename to disk verbatim, but the `.htaccess` rule that forces `Content-Disposition: attachment` on HTML files is case-sensitive. An HTML file uploaded with an uppercase extension (`.HTML`, `.Html`, `.HTM`) is still served as `text/html` but the forced-download header never applies, so the browser renders it inline and executes any embedded JavaScript in the HAXcms origin. This bypasses the mitigation shipped for CVE-2026-22704. Version 26.0.0 contains a fix.

pub. 2026-06-05
Pokazano 20 z 92 podatności
Informacje
ID: CWE-178
Typ: Base
Podatności: 92
MITRE CWE ↗
← Słownik CWE