CVE-2023-36457

Name of the Vulnerable Software and Affected Versions 1Panel versions prior to 1.3.6

Description The issue is related to command injection when adding container repositories. An authenticated attacker can craft a malicious payload to achieve this. The vulnerability is due to the lack of proper neutralization of special elements used in the operating system command. This can allow a remote attacker to execute arbitrary commands.

Recommendations For versions prior to 1.3.6, upgrade to version 1.3.6 to fix the vulnerability. As a temporary workaround, consider restricting access to the backendappapiv1image repo.go#create and backendappserviceimage repo.go#CheckConn functions until the patch is applied. Avoid using the username parameter in the affected API endpoint /api/v1/containers/repo until the issue is resolved.