Lucene search

GoogleOSV:CVE-2023-34105

HistoryJun 12, 2023 - 5:15 p.m.

CVE-2023-34105

2023-06-1217:15:09

Google

osv.dev

srs

video server

vulnerability

drive-by command injection

rce

fix

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS’s api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing any commands to be executed as part of the body of the POST request. This issue may lead to Remote Code Execution (RCE). Versions 5.0.157, 5.0-b1, and 6.0.48 contain a fix.

CPENameOperatorVersion
srseq2.0-r4
srseq2.0-b0
srseq2.0-r1
srseq2.0-r6
srseq5.0-a0
srseq2.0-r8
srseq4.0-r3
srseq3.0-a6
srseq6.0.10
srseq3.0-a2

Name	Operator	Version
srs	eq	2.0-r4
srs	eq	2.0-b0
srs	eq	2.0-r1
srs	eq	2.0-r6
srs	eq	5.0-a0
srs	eq	2.0-r8
srs	eq	4.0-r3
srs	eq	3.0-a6
srs	eq	6.0.10
srs	eq	3.0-a2

Rows per page:

1-10 of 681

References

github.com/ossrs/srs/blob/1d11d02e4b82fc3f37e4b048cff483b1581482c1/trunk/research/api-server/server.go#L761

github.com/ossrs/srs/commit/1d878c2daaf913ad01c6d0bc2f247116c8050338

github.com/ossrs/srs/security/advisories/GHSA-vpr5-779c-cx62

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

Related for OSV:CVE-2023-34105