Lucene search

Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-90865F9237EB49B4789FEADE7ABCE112

HistoryAug 10, 2023 - 12:00 a.m.

Missing Authorization

2023-08-1000:00:00

https://gitlab.com/gitlab-org/security-products/gemnasium-db

gitlab.com

linux

server management

arbitrary file write

vulnerability

patch

version 1.4.3

version 1.5.0

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.0%

JSON

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the api/v1/file.go file, there is a function called SaveContentthat,It recieves JSON data sent by users in the form of a POST request. And the lack of parameter filtering allows for arbitrary file write operations. Version 1.5.0 contains a patch for this issue.

Affected configurations

Vulners

Node

go1panelMatchv1.4.3

VendorProductVersionCPE
go1panelv1.4.3cpe:2.3:a:go:1panel:v1.4.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
go	1panel	v1.4.3	cpe:2.3:a:go:1panel:v1.4.3:::::::*

References

github.com/1Panel-dev/1Panel/releases/tag/v1.5.0

github.com/1Panel-dev/1Panel/security/advisories/GHSA-hf7j-xj3w-87g4

github.com/advisories/GHSA-hf7j-xj3w-87g4

nvd.nist.gov/vuln/detail/CVE-2023-39966

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.0%

JSON

Related for GITLAB-90865F9237EB49B4789FEADE7ABCE112