CVE-2020-7729

Exploit

EPSS 3.58%
Published 03.09.2020 09:15:10
Last modified 21.11.2024 05:37:41
Source report@snyk.io
Teams watchlist Login
Open Login

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load() instead of its secure replacement safeLoad() of the package js-yaml inside grunt.file.readYAML.

Affected products Warnungen 0 Metrics 3 CWE 1 References 9

Data is provided by the National Vulnerability Database (NVD)

Gruntjs ≫ Grunt SwPlatformnode.js Version < 1.3.0

Debian ≫ Debian Linux Version9.0

Canonical ≫ Ubuntu Linux Version18.04 SwEditionlts

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	3.58%	0.873

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.6	3.9	6.4	AV:N/AC:H/Au:S/C:P/I:P/A:P
report@snyk.io	7.1	1.2	5.9	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-1188 Initialization of a Resource with an Insecure Default

The product initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.

https://github.com/gruntjs/grunt/blob/master/lib/grunt/file.js%23L249

Broken Link

https://github.com/gruntjs/grunt/commit/e350cea1724eb3476464561a380fb6a64e61e4e7

Patch

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2020/09/msg00008.html

Third Party Advisory

Mailing List

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-607922

Third Party Advisory

https://snyk.io/vuln/SNYK-JS-GRUNT-597546

Third Party Advisory

Exploit

https://usn.ubuntu.com/4595-1/

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-7729

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-7729

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-7729

EUVD