A command injection vulnerability was found in the web administration console in SoftNAS Cloud before 4.0.3. In particular, the snserv script did not sanitize the 'recentVersion' parameter from the snserv endpoint, allowing an unauthenticated attacker to execute arbitrary commands with root permissions.
References
Link | Resource |
---|---|
https://www.coresecurity.com/advisories/softnas-cloud-os-command-injection | Exploit Third Party Advisory |
https://docs.softnas.com/display/SD/Release+Notes | Vendor Advisory |
http://seclists.org/fulldisclosure/2018/Jul/85 | Exploit Mailing List Third Party Advisory |
https://www.exploit-db.com/exploits/45097/ | Exploit Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/104914 | VDB Entry Third Party Advisory |
Configurations
Information
Published : 2018-08-03 18:29
Updated : 2018-10-02 13:24
NVD link : CVE-2018-14417
Mitre link : CVE-2018-14417
JSON object : View
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Products Affected
softnas
- cloud