CVE-2022-24989

Опубликовано: 20 авг. 2023

Источник: nvd

CVSS3: 9.8

EPSS Высокий

Описание

TerraMaster NAS through 4.2.30 allows remote WAN attackers to execute arbitrary code as root via the raidtype and diskstring parameters for PHP Object Instantiation to the api.php?mobile/createRaid URI. (Shell metacharacters can be placed in raidtype because popen is used without any sanitization.) The credentials from CVE-2022-24990 exploitation can be used.

Ссылки

https://attackerkb.com/topics/h8YKVKx21t/cve-2022-24990
Third Party Advisory
https://forum.terra-master.com/en/viewforum.php?f=28
Release Notes
https://github.com/0xf4n9x/CVE-2022-24990
Exploit
https://octagon.net/blog/2022/03/07/cve-2022-24990-terrmaster-tos-unauthenticated-remote-command-execution-via-php-object-instantiation
Exploit
https://packetstormsecurity.com/files/172904
Exploit
Third Party Advisory
VDB Entry
https://attackerkb.com/topics/h8YKVKx21t/cve-2022-24990
Third Party Advisory
https://forum.terra-master.com/en/viewforum.php?f=28
Release Notes
https://github.com/0xf4n9x/CVE-2022-24990
Exploit
https://octagon.net/blog/2022/03/07/cve-2022-24990-terrmaster-tos-unauthenticated-remote-command-execution-via-php-object-instantiation
Exploit
https://packetstormsecurity.com/files/172904
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:terra-master:terramaster_operating_system:*:*:*:*:*:*:*:*

Версия до 4.2.31 (исключая)

Одно из

cpe:2.3:h:terra-master:f2-210:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f2-221:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f2-223:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f2-422:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f2-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f4-421:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f4-422:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f4-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f5-221:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:f5-422:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:t12-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:t12-450:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:t6-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:t9-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:t9-450:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u12-322-9100:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u12-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u12-722-2224:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u16-322-9100:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u16-722-2224:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u24-722-2224:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u4-111:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u4-211:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u4-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u8-111:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u8-322-9100:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u8-423:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u8-522-9400:-:*:*:*:*:*:*:*

cpe:2.3:h:terra-master:u8-722-2224:-:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.82108

Высокий

9.8 Critical

CVSS3

Дефекты

CWE-74

Связанные уязвимости

GHSA-37wm-xp2m-g3h7