CVE-2024-41111

EPSS 0.23%
Veröffentlicht 18.07.2024 23:15:02
Zuletzt bearbeitet 21.11.2024 09:32:15
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all sizes to perform security testing. Sliver version 1.6.0 (prerelease) is vulnerable to RCE on the teamserver by a low-privileged "operator" user. The RCE is as the system root user. The exploit is pretty fun as we make the Sliver server pwn itself. As described in a past issue (#65), "there is a clear security boundary between the operator and server, an operator should not inherently be able to run commands or code on the server." An operator who exploited this vulnerability would be able to view all console logs, kick all other operators, view and modify files stored on the server, and ultimately delete the server. This issue has not yet be addressed but is expected to be resolved before the full release of version 1.6.0. Users of the 1.6.0 prerelease should avoid using Silver in production.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

Herstellerbishopfox

≫

Produkt sliver

Default Statusunknown

Version 1.6.0-dev

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.453

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

https://github.com/BishopFox/sliver/commit/5016fb8d7cdff38c79e22e8293e58300f8d3bd57

https://github.com/BishopFox/sliver/issues/65

https://github.com/BishopFox/sliver/pull/1281

https://github.com/BishopFox/sliver/security/advisories/GHSA-hc5w-gxxr-w8x8

https://sliver.sh/docs?name=Multi-player+Mode

https://nvd.nist.gov/vuln/detail/CVE-2024-41111

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-41111

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-41111

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-41111