Lucene search

GoogleOSV:CVE-2023-50090

HistoryJan 03, 2024 - 8:15 p.m.

CVE-2023-50090

2024-01-0320:15:21

Google

osv.dev

arbitrary file write

vulnerability

ureport2

crafted post request

software

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POST request.

CPENameOperatorVersion
ureporteq2.2.6
ureporteq2.2.8
ureporteq2.2.5
ureporteq2.2.3
ureporteq2.2.7
ureporteq2.2.9
ureporteq2.2.4
ureporteq2.2.2
ureporteq2.2.1

Name	Operator	Version
ureport	eq	2.2.6
ureport	eq	2.2.8
ureport	eq	2.2.5
ureport	eq	2.2.3
ureport	eq	2.2.7
ureport	eq	2.2.9
ureport	eq	2.2.4
ureport	eq	2.2.2
ureport	eq	2.2.1

References

github.com/advisories/GHSA-445x-c8qq-qfr9

lemono.fun/thoughts/UReport2-RCE.html

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

Related for OSV:CVE-2023-50090