Remote code execution

2024-01-2916:15:00

PRIOn knowledge base

www.prio-n.com

remote code execution

nginx-ui

import certificate

arbitrary write

system vulnerability

config file

app.ini

version 2.0.0.beta.12

nvd

8.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.4%

JSON

Nginx-UI is a web interface to manage Nginx configurations. The Import Certificate feature allows arbitrary write into the system. The feature does not check if the provided user input is a certification/key and allows to write into arbitrary paths in the system. It’s possible to leverage the vulnerability into a remote code execution overwriting the config file app.ini. Version 2.0.0.beta.12 fixed the issue.

CPENameOperatorVersion
nginx_uieq2.0.0 beta8
nginx_uieq2.0.0 beta7
nginx_uieq2.0.0 beta6
nginx_uieq2.0.0 beta5
nginx_uieq2.0.0 beta4
nginx_uieq2.0.0 beta3
nginx_uieq2.0.0 beta2
nginx_uieq2.0.0 beta1
nginx_uieq2.0.0 beta8-patch
nginx_uieq2.0.0 beta6-patch2

Name	Operator	Version
nginx_ui	eq	2.0.0 beta8
nginx_ui	eq	2.0.0 beta7
nginx_ui	eq	2.0.0 beta6
nginx_ui	eq	2.0.0 beta5
nginx_ui	eq	2.0.0 beta4
nginx_ui	eq	2.0.0 beta3
nginx_ui	eq	2.0.0 beta2
nginx_ui	eq	2.0.0 beta1
nginx_ui	eq	2.0.0 beta8-patch
nginx_ui	eq	2.0.0 beta6-patch2