The Strapi framework before 3.0.0-beta.17.8 is vulnerable to Remote Code Execution in the Install and Uninstall Plugin components of the Admin panel, because it does not sanitize the plugin name, and attackers can inject arbitrary shell commands to be executed by the execa function.
Attack Vector Network
Attack Complexity Low
Privileges Required High
Scope Unchanged
Confidentiality Impact High
Integrity Impact High
Availability Impact High
User Interaction None
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication Single
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
AV:N/AC:L/Au:S/C:C/I:C/A:C
Vendors | Products |
---|---|
Strapi |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/163940/Strapi-3.0.0-beta.17.7-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
http://packetstormsecurity.com/files/163950/Strapi-CMS-3.0.0-beta.17.4-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
https://bittherapy.net/post/strapi-framework-remote-code-execution/ | Exploit Third Party Advisory |
https://github.com/strapi/strapi/pull/4636 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-12-05T19:44:28
Updated: 2021-08-31T16:06:14
Reserved: 2019-12-05T00:00:00
Link: CVE-2019-19609
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-12-05T20:15:10.200
Modified: 2021-09-14T12:03:35.023
Link: CVE-2019-19609
JSON object: View
Redhat Information
No data.
CWE