CVE-2024-22198

2024-01-1120:15:45

CWE-77

[email protected]

web.nvd.nist.gov

nginx-ui

arbitrary command execution

configuration settings

cve-2024-22198

vulnerability

patch

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.5%

JSON

Nginx-UI is a web interface to manage Nginx configurations. It is vulnerable to arbitrary command execution by abusing the configuration settings. The Home > Preference page exposes a list of system settings such as Run Mode, Jwt Secret, Node Secret and Terminal Start Command. While the UI doesn’t allow users to modify the Terminal Start Command setting, it is possible to do so by sending a request to the API. This issue may lead to authenticated remote code execution, privilege escalation, and information disclosure. This vulnerability has been patched in version 2.0.0.beta.9.

Affected configurations

Vulners

NVD

Node

0xjackynginx_uiRange<2.0.0.beta.9

CPENameOperatorVersion
nginxui:nginx_uinginxui nginx uilt2.0.0

CPE	Name	Operator	Version
nginxui:nginx_ui	nginxui nginx ui	lt	2.0.0

CNA Affected

[
  {
    "vendor": "0xJacky",
    "product": "nginx-ui",
    "versions": [
      {
        "version": "< 2.0.0.beta.9",
        "status": "affected"
      }
    ]
  }
]