Lucene search
K

13 matches found

OSV
OSV
added 2023/05/03 9:30 p.m.27 views

GHSA-H475-7V3C-26Q7 Command injection in OpenTSDB

Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host system. This exploit exists due to an incomplete fix that was made when this vulnerability was...

9.8CVSS9.6AI score0.35604EPSS
Exploits4References5
Github Security Blog
Github Security Blog
added 2023/05/03 9:30 p.m.43 views

Command injection in OpenTSDB

Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host system. This exploit exists due to an incomplete fix that was made when this vulnerability was...

9.8CVSS9.6AI score0.35604EPSS
Exploits4References5Affected Software1
NVD
NVD
added 2023/05/03 7:15 p.m.46 views

CVE-2023-25826

Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host system. This exploit exists due to an incomplete fix that was made when this vulnerability was...

9.8CVSS9.7AI score0.35604EPSS
Exploits4References3
Prion
Prion
added 2023/05/03 7:15 p.m.25 views

Input validation

Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host system. This exploit exists due to an incomplete fix that was made when this vulnerability was...

7.5CVSS9.5AI score0.8533EPSS
Exploits8References3Affected Software1
CVE
CVE
added 2023/05/03 6:33 p.m.115 views

CVE-2023-25826

CVE-2023-25826 affects OpenTSDB via unauthenticated command injection in the HTTP query path (legacy API). The issue stems from insufficient validation of parameters (notably in the query API), allowing crafted commands to bypass regex filters and execute on the host. Public writeups and exploits...

9.8CVSS9.6AI score0.35604EPSS
Exploits4References3Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2023/01/06 9:32 p.m.29 views

Metasploit Weekly Wrap-Up

Back from a quiet holiday season Thankfully, it was a relatively quiet holiday break for security this year, so we hope everyone had a relaxing time while they could. This wrapup covers the last three Metasploit releases, and contains three new modules, two updates, and five bug fixes. Make sure...

10CVSS0.5AI score0.97136EPSS
Exploits21
0day.today
0day.today
added 2022/12/24 12:0 a.m.403 views

OpenTSDB 2.4.0 Command Injection Exploit

This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 CVE-2020-35476 in order to achieve unauthenticated remote code execution as the root user. The module first attempts to obtain the OpenTSDB version via the api. If...

9.8CVSS9.9AI score0.8533EPSS
Exploits5
Metasploit
Metasploit
added 2022/12/23 7:51 p.m.223 views

OpenTSDB 2.4.0 unauthenticated command injection

This module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 CVE-2020-35476 in order to achieve unauthenticated remote code execution as the root user. The module first attempts to obtain the OpenTSDB version via the api. If the version...

9.8CVSS9.8AI score0.8533EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/12/23 12:0 a.m.235 views

OpenTSDB 2.4.0 Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenTSDB 2.4.0 unauthenticated command injection', 'Description' = %q This module exploits an unauthenticated command injection vulnerability in...

9.8CVSS0.1AI score0.8533EPSS
Exploits5
vulnersOsv
vulnersOsv
added 2021/08/02 5:2 p.m.4 views

io.kamon:kamon-opentsdb_2.10 (=0.6.7), io.kamon:kamon-opentsdb_2.11 (=0.6.7) +2 more potentially affected by CVE-2020-35476 via net.opentsdb:opentsdb (>=2.3.0 <=2.4.0)

net.opentsdb:opentsdb MAVEN version =2.3.0, =2.3.2, =2.4.0 Source cves: CVE-2020-35476 Source advisory: OSV:GHSA-HV53-Q76C-7F8C...

9.8CVSS7.2AI score0.8533EPSS
Exploits5
Check Point Advisories
Check Point Advisories
added 2021/02/10 12:0 a.m.72 views

StumbleUpon OpenTSDB Remote Code Execution (CVE-2020-35476)

A remote code execution vulnerability exists in StumbleUpon OpenTSDB. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.4AI score0.8533EPSS
Exploits5
Circl
Circl
added 2020/12/16 3:25 p.m.147 views

CVE-2020-35476

creationtimestamp| type| source ---|---|--- 2020-12-16 15:25:41+00:00| seen| https://t.me/cibsecurity/20908 2021-04-27 09:04:52+00:00| published-proof-of-concept| https://t.me/pwnwikizhchannel/267 2022-12-23 14:46:09+00:00| seen|...

9.8CVSS7.3AI score0.8533EPSS
In wildExploits5References9
CVE
CVE
added 2020/12/16 12:0 a.m.188 views

CVE-2020-35476

OpenTSDB 2.4.0 and earlier is vulnerable to remote code execution via the yrange parameter, which writes a gnuplot file to /tmp and invokes it through mygnuplot.sh. The underlying issue is command injection not fully mitigated by tsd/GraphHandler.java, enabling an attacker to execute arbitrary co...

9.8CVSS9.7AI score0.8533EPSS
In wildExploits5References2Affected Software1
Rows per page
Query Builder