Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Zepl Notebook Sandbox Escape Vulnerability

🗓️ 17 Feb 2022 00:00:00Reported by Josh SheppardType 
zdt
 zdt🔗 0day.today👁 252 Views

Zepl Notebook Sandbox Escape Vulnerability. Remote Code Execution leads to sandbox escape and compromise of cloud asset

Related
Code
ReporterTitlePublishedViews
Family
0day.today		Zepl Notebook Remote Code Execution Vulnerability
17 Feb 202200:00
zdt
Circl		CVE-2021-42950
3 Mar 202207:25
circl
Circl		CVE-2021-42952
25 Feb 202222:21
circl
CNNVD		Zepl Notebook 安全漏洞
17 Feb 202200:00
cnnvd
CNNVD		Zepl Notebook 安全漏洞
17 Feb 202200:00
cnnvd
CVE		CVE-2021-42950
3 Mar 202202:10
cve
CVE		CVE-2021-42952
25 Feb 202219:43
cve
Cvelist		CVE-2021-42950
3 Mar 202202:10
cvelist
Cvelist		CVE-2021-42952
25 Feb 202219:43
cvelist
EUVD		EUVD-2021-29905
3 Oct 202520:07
euvd
Rows per page
Exploit Title: Zepl Notebook - Sandbox Escape
Vendor Homepage: https://zepl.com/
Software Link: https://app.zepl.com/
Version: Affects all versions of the product up to the date of this submission
Tested on: The issue affects all versions of the product up to the date of this submission
Exploit Authors: Josh Sheppard & Pathfynder Inc
Exploit Contact: ghost a t undervurse dot_com & josh a t pathfynder dot_io
Exploit Technique: Remote
CVE ID: CVE-2021-42952
 1. Description
 A container escape vulnerability has been discovered in Zepl's Notebooks product. Upon launching Remote Code Execution from the Notebook (CVE-2021-42950), users can then use that to subsequently escape the running context sandbox and proceed to access internal Zepl assets including cloud metadata services resulting in complete compromise of cloud assets.
 This vulnerability effects all previous versions of their Notebook product suite.
 2. Disclosure Timeline
9/28/21 - Discovery and Exploitation
9/28/21 - Vendor Notified
10/31/21 - Patch Applied
2/16/22 - CVE Assigned
2/17/22 - Public Disclosure
 3. Mitigation
Hotfix applied to vendors SAAS solution, no action is necessary at this time

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Feb 2022 00:00Current
8.8High risk
Vulners AI Score8.8
CVSS 26.5
CVSS 3.19.9
EPSS0.02852
zeplnotebooksandbox escaperemote code executioncloud assetsvulnerabilitycve-2021-42952disclosure timelinemitigation
252