Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-29078

Опубликовано: 25 апр. 2022
Источник: redhat
CVSS3: 9.8
EPSS Критический

Описание

The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js allows server-side template injection in settings[view options][outputFunctionName]. This is parsed as an internal option, and overwrites the outputFunctionName option with an arbitrary OS command (which is executed upon template compilation).

A Command injection attack was found in ejs (Embedded JavaScript templates) for Node.js, which allows an attacker to execute server-side template injection in settings[view options][outputFunctionName]. This is parsed as an internal option and overwrites the outputFunctionName option with an arbitrary OS command executed upon template compilation.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Migration Toolkit for Containersrhmtc/openshift-migration-ui-rhel8Affected
Migration Toolkit for Virtualizationmigration-toolkit-virtualization/mtv-ui-rhel8Affected
OpenShift Service Mesh 2.1openshift-service-mesh/kiali-rhel8Not affected
Red Hat Advanced Cluster Management for Kubernetes 2rhacm2/console-header-rhel8Affected
Red Hat Advanced Cluster Management for Kubernetes 2rhacm2/console-rhel8Affected
Red Hat Advanced Cluster Management for Kubernetes 2rhacm2/kui-web-terminal-rhel8Affected
Red Hat Advanced Cluster Management for Kubernetes 2rhacm2/mcm-topology-rhel8Affected
Red Hat Advanced Cluster Management for Kubernetes 2rhacm2/search-ui-rhel8Affected
Red Hat A-MQ OnlineejsNot affected
Red Hat build of Apicurio Registry 2ejsAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-74->CWE-77
https://bugzilla.redhat.com/show_bug.cgi?id=2078757ejs: server-side template injection in outputFunctionName

EPSS

Процентиль: 100%
0.93462
Критический

9.8 Critical

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-29078

CVSS3: 9.8
ubuntu
почти 4 года назад

The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js allows server-side template injection in settings[view options][outputFunctionName]. This is parsed as an internal option, and overwrites the outputFunctionName option with an arbitrary OS command (which is executed upon template compilation).

nvd логотип

CVE-2022-29078

CVSS3: 9.8
nvd
почти 4 года назад

The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js allows server-side template injection in settings[view options][outputFunctionName]. This is parsed as an internal option, and overwrites the outputFunctionName option with an arbitrary OS command (which is executed upon template compilation).

debian логотип

CVE-2022-29078

CVSS3: 9.8
debian
почти 4 года назад

The ejs (aka Embedded JavaScript templates) package 3.1.6 for Node.js ...

github логотип

GHSA-phwq-j96m-2c2q

CVSS3: 9.8
github
почти 4 года назад

ejs template injection vulnerability

fstec логотип

BDU:2022-04347

CVSS3: 9.8
fstec
почти 4 года назад

Уязвимость функции outputFunctionName каркаса веб-приложений ejs для Node. js, позволяющая нарушителю выполнить произвольные команды

EPSS

Процентиль: 100%
0.93462
Критический

9.8 Critical

CVSS3