CVE-2023-1304

Exploit

EPSS 0.15%
Veröffentlicht 21.03.2023 17:15:11
Zuletzt bearbeitet 25.02.2025 19:15:12
Quelle cve@rapid7.com
CVE-Watchlists
Login
Unerledigt
Login

An authenticated attacker can leverage an exposed getattr() method via a Jinja template to smuggle OS commands and perform other actions that are normally expected to be private methods. This issue was resolved in the Managed and SaaS deployments on February 1, 2023, and in version 23.2.1 of the Self-Managed version of InsightCloudSec.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Rapid7 ≫ Insightappsec SwEditionself-managed Version < 23.2.1

Rapid7 ≫ Insightcloudsec SwEditionmanaged Version < 2023.02.01

Rapid7 ≫ Insightcloudsec SwEditionsaas Version < 2023.02.01

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.15%	0.363

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://docs.divvycloud.com/changelog/23321-release-notes

Release Notes

https://nephosec.com/exploiting-rapid7s-insightcloudsec/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-1304

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-1304

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-1304

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-1304