漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Authenticated Remote Code Execution via Arbitrary NDJSON Error Log Path in MISP
Vulnerability Description
MISP allowed a site administrator to configure an arbitrary filesystem path for the NDJSON error log used by JsonLogTool. Because log entries can include attacker-controlled content, an authenticated attacker with site administrator privileges could direct log output to a PHP file in a web-accessible directory and inject PHP code through logged data. Accessing the resulting file could lead to remote code execution with the privileges of the web server process. The fix restricts log destinations to existing directories beneath APP/tmp/logs or /var/log, requires absolute paths, rejects stream wrappers and traversal-related input, and limits filenames to .log or .ndjson extensions while disallowing executable extension segments.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
MISP 代码注入漏洞
Vulnerability Description
MISP是MISP组织开源的一套开源的软件解决方案。该产品用于收集、存储、分发、共享网络安全指标,并具有威胁网络安全事件分析和恶意软件分析等功能。 MISP 2.5.41及之前版本存在代码注入漏洞,该漏洞源于站点管理员可配置JsonLogTool使用的NDJSON错误日志的任意文件系统路径,由于日志条目可能包含攻击者控制的内容,经过身份验证且具有站点管理员权限的攻击者可将日志输出导向Web可访问目录中的PHP文件,并通过记录的数据注入PHP代码,访问生成的文件可能导致以Web服务器进程权限远程执行代码。
CVSS Information
N/A
Vulnerability Type
N/A