Remote code injection in domokeeper
Published:
2019-07-11 18:54:15
| Severity | High |
| Patch available | NO |
| Number of vulnerabilities | 1 |
| CVE ID | N/A |
| CVSSv3 |
9 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:C] |
| CWE ID |
CWE-94 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
domokeeper |
| Vulnerable software versions |
domokeeper 0.2.0 domokeeper 0.1.1 domokeeper 0.1.0 domokeeper 0.0.3 domokeeper 0.0.2 |
| Vendor URL | Julián Perelli |
Security Advisory
1) Code Injection
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to the path to required module is passed in a HTTP request without any sanitization. A remote attacker can read output of "json" file or execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
PoC:
http://[host]/plugins/.%2Fpackage.jsonRemediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
External links