CVE-2025-62524
BaseFortify
Publication date: 2025-10-27
Last updated on: 2025-11-04
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| thm | pilos | to 4.8.0 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-497 | The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does. |
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in PILOS before version 4.8.0 exposes the PHP version used by the server through the X-Powered-By HTTP header. Attackers can use this information to fingerprint the server and identify potential exploits. Additionally, the PHP version can be inferred from the PILOS version shown in the footer and by examining the source code on GitHub. This is an information disclosure vulnerability that was fixed in version 4.8.0.
How can this vulnerability impact me? :
The vulnerability allows attackers to gain information about the server's PHP version, which can help them identify known vulnerabilities and plan targeted attacks. While it does not directly compromise data integrity or availability, it increases the risk of exploitation by revealing system details that should remain confidential.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by checking if the PHP version is exposed via the X-Powered-By HTTP header in responses from the PILOS frontend before version 4.8.0. You can use commands like `curl -I http://your-pilos-server` or `curl -s -D - http://your-pilos-server | grep X-Powered-By` to see if the PHP version is disclosed. Additionally, inspecting the footer of the web interface for the PILOS version or reviewing the source code on GitHub can help infer the PHP version.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability immediately, upgrade PILOS to version 4.8.0 or later where the PHP version disclosure via the X-Powered-By header has been patched. Alternatively, you can configure your web server or PHP settings to remove or hide the X-Powered-By header to prevent PHP version disclosure.