CVE-2021-43484 – This vulnerability allows unauthenticated attac... (How to Fix)

Q: What is the severity of CVE-2021-43484?

CVE-2021-43484 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows unauthenticated attackers to execute arbitrary code on Simple Client Management System 1.0 servers by uploading malicious files through create.php. Any organization using this software without proper file extension validation is affected.

📋 TL;DR

This vulnerability allows unauthenticated attackers to execute arbitrary code on Simple Client Management System 1.0 servers by uploading malicious files through create.php. Any organization using this software without proper file extension validation is affected.

💻 Affected Systems

Products:

Simple Client Management System

Versions: 1.0

Operating Systems: Any OS running PHP

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations of version 1.0; no special configuration required for exploitation.

📦 What is this software?

Simple Client Management System by Simple Client Management System Project

View all CVEs affecting Simple Client Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise leading to data theft, ransomware deployment, or creation of persistent backdoors.

🟠

Likely Case

Webshell installation allowing unauthorized access, data exfiltration, and lateral movement within the network.

🟢

If Mitigated

Limited impact with proper network segmentation and file upload restrictions.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit code is publicly available and requires minimal technical skill to execute.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: N/A

Vendor Advisory: N/A

Restart Required: No

Instructions:

No official patch exists. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

File Upload Restriction

all

Implement server-side validation to restrict file uploads to specific extensions

Modify create.php to validate file extensions before processing

Web Application Firewall Rule

all

Block requests to create.php with suspicious file extensions

WAF rule: Block POST requests to */create.php containing .php, .phtml, .phar extensions

🧯 If You Can't Patch

Remove or disable create.php functionality entirely
Implement strict network segmentation to isolate the vulnerable system

🔍 How to Verify

Check if Vulnerable:

Check if Simple Client Management System version 1.0 is installed and create.php exists without file extension validation

Check Version:

Check application files for version information or review installation documentation

Verify Fix Applied:

Test file upload functionality with malicious extensions to confirm they are rejected

📡 Detection & Monitoring

Log Indicators:

Multiple failed/successful file upload attempts to create.php
Unusual POST requests to create.php with executable extensions

Network Indicators:

HTTP POST requests to create.php with .php/.phtml files
Outbound connections from web server to unknown IPs

SIEM Query:

source="web_logs" AND uri="*/create.php" AND (file_extension="php" OR file_extension="phtml")

📊 Metadata

CVE ID: CVE-2021-43484

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

Published: March 31, 2022

Last Updated: November 21, 2024

🔗 References

https://www.exploit-db.com/exploits/50094 Third Party Advisory,VDB Entry
https://www.exploit-db.com/exploits/50094 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-43484, you might also want to check these: