CVE-2024-23827

2024-01-2916:15:09

Google

osv.dev

cve-2024-23827

nginx-ui

web interface

nginx configurations

import certificate

arbitrary write

remote code execution

app.ini

version 2.0.0.beta.12

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.4%

JSON

Nginx-UI is a web interface to manage Nginx configurations. The Import Certificate feature allows arbitrary write into the system. The feature does not check if the provided user input is a certification/key and allows to write into arbitrary paths in the system. It’s possible to leverage the vulnerability into a remote code execution overwriting the config file app.ini. Version 2.0.0.beta.12 fixed the issue.

CPENameOperatorVersion
nginx-uieq1.3.3-rc1
nginx-uieq1.3.0
nginx-uieq1.6.5
nginx-uieq1.5.0
nginx-uieq1.6.7
nginx-uieq1.3.2
nginx-uieq1.7.0-patch
nginx-uieq1.4.2
nginx-uieq1.6.8
nginx-uieq1.7.1

Name	Operator	Version
nginx-ui	eq	1.3.3-rc1
nginx-ui	eq	1.3.0
nginx-ui	eq	1.6.5
nginx-ui	eq	1.5.0
nginx-ui	eq	1.6.7
nginx-ui	eq	1.3.2
nginx-ui	eq	1.7.0-patch
nginx-ui	eq	1.4.2
nginx-ui	eq	1.6.8
nginx-ui	eq	1.7.1