{"id":4639,"date":"2025-06-10T09:09:55","date_gmt":"2025-06-10T14:09:55","guid":{"rendered":"https:\/\/cert.pa\/?p=4639"},"modified":"2025-06-10T09:09:56","modified_gmt":"2025-06-10T14:09:56","slug":"csirt-panama-aviso-2025-jun-10-aviso-de-seguridad-ejecucion-de-codigo-remoto-en-webmail-de-roundcube","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=4639","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2025-jun\u201310 Aviso de Seguridad &#8211; Ejecuci\u00f3n de c\u00f3digo remoto en Webmail de Roundcube"},"content":{"rendered":"\n<p>CSIRT Panam\u00e1 Aviso 2025-jun\u201310 Aviso de Seguridad &#8211; Ejecuci\u00f3n de c\u00f3digo remoto en Webmail de Roundcube<br>Gravedad: ALTA<br>Fecha de publicaci\u00f3n: Junio 10, 2025<br>\u00daltima revisi\u00f3n: Junio 10, 2025<br>Fuente: https:\/\/www.incibe.es\/incibe-cert\/alerta-temprana\/avisos\/ejecucion-de-codigo-remoto-en-webmail-de-roundcube<\/p>\n\n\n\n<p>Sistemas afectados<br>Roundcube versiones 1.1.0 a 1.6.10, incluidas las instalaciones predeterminadas en cPanel, Plesk, ISPConfig y otras.<\/p>\n\n\n\n<p>Oracle Cloud<\/p>\n\n\n\n<p>I. Descripci\u00f3n<br>Kirill Firsov ha informado sobre una vulnerabilidad de severidad cr\u00edtica que podr\u00eda permitir a un atacante ejecutar c\u00f3digo de forma remota.<\/p>\n\n\n\n<p>Existe constancia de que la vulnerabilidad se est\u00e1 explotando de forma activa.violaci\u00f3n de seguridad en Oracle Cloud que podr\u00eda haber permitido a un actor de amenazas que se identifica como rose87168 acceder a entornos de producci\u00f3n.<\/p>\n\n\n\n<p>II. Impacto<br>La vulnerabilidad de severidad cr\u00edtica permite la ejecuci\u00f3n remota de c\u00f3digo por parte de usuarios autenticados, ya que el par\u00e1metro _from en una URL no est\u00e1 validado en program\/actions\/settings\/upload.php, lo que lleva a la deserializaci\u00f3n de objetos PHP.<\/p>\n\n\n\n<p>III. Referencia a soluciones, herramientas e informaci\u00f3n<\/p>\n\n\n\n<p>Se recomienda actualizar a las versiones:<\/p>\n\n\n\n<p>1.6.11 (\u00faltima versi\u00f3n estable)<br>1.5.10 (LTS)<\/p>\n\n\n\n<p>IV. Informaci\u00f3n de contacto<\/p>\n\n\n\n<p>CSIRT PANAMA<br>Computer Security Incident Response Team Autoridad Nacional para la Innovacion Gubernamental<br>E-Mail: incidentes@cert.pa<br>E-Mail: info@cert.pa<br>Phone: +507 520-CERT (2378)<br>Web: https:\/\/cert.pa<br>Key ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2025-jun\u201310 Aviso de Seguridad &#8211; Ejecuci\u00f3n de c\u00f3digo remoto en Webmail de RoundcubeGravedad: ALTAFecha de publicaci\u00f3n: Junio 10, 2025\u00daltima revisi\u00f3n: Junio 10, 2025Fuente: https:\/\/www.incibe.es\/incibe-cert\/alerta-temprana\/avisos\/ejecucion-de-codigo-remoto-en-webmail-de-roundcube Sistemas afectadosRoundcube versiones 1.1.0 a 1.6.10, incluidas las&#8230;<\/p>\n","protected":false},"author":5,"featured_media":4640,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[72],"class_list":["post-4639","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-avisos-de-seguridad"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4639","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4639"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4639\/revisions"}],"predecessor-version":[{"id":4641,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4639\/revisions\/4641"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/4640"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4639"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4639"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4639"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}