Katriel Moses

**Name of the Vulnerable Software and Affected Versions** Perry versions prior to 0.5.1166 **Description** An issue in the JWT validation process allows remote attackers to bypass token expiration. This occurs because the `verify decode` helper within the stdlib JWT verification path unconditionally sets `validate exp` to `false`. Consequently, attackers with a previously issued bearer token can use expired tokens in any `jwt.verify()` call to maintain authenticated access indefinitely, bypassing session expiration mechanisms such as administrative revocation or user logout. **Recommendations** Update to version 0.5.1166 or later.

**Name of the Vulnerable Software and Affected Versions** Perry versions prior to 0.5.1159 **Description** A path traversal issue exists where a malicious build server can write arbitrary content to any location writable by the running process. This occurs when unsanitized path components are supplied in the `artifact name` field of ArtifactReady WebSocket messages. Attackers who control the server URL can deliver traversal payloads through the `artifact name` or `download path` fields, leading to the overwriting of sensitive files or the exposure of arbitrary local files to a location accessible by the attacker. **Recommendations** Update to version 0.5.1159 or later.

**Name of the Vulnerable Software and Affected Versions** KanaDojo (affected versions not specified) **Description** A command injection issue exists where an attacker with pull request access can execute arbitrary shell commands. This occurs when shell metacharacters are inserted into the `version` or `changes` fields of the 'patchNotesData.json' file. These fields are interpolated without sanitization into a `child process.execSync()` function call within the 'release.yml' workflow. A malicious pull request, once merged, can trigger the GitHub Actions runner, granting the attacker contents write permissions and access to the `GITHUB TOKEN`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** KanaDojo versions prior to 0.1.18 **Description** A sandbox escape allows remote code execution with full GitHub Actions runner privileges, including access to the `AUTOMATION PR TOKEN` variable. The issue occurs in the issue-auto-respond.yml workflow due to the explicit passing of the global `require()` function into a Node.js `vm.runInNewContext()` sandbox context. An attacker can exploit this by submitting a pull request that modifies `messages.cjs` to import arbitrary Node.js modules, thereby bypassing sandbox restrictions. **Recommendations** Update to version 0.1.18 or later.

**Name of the Vulnerable Software and Affected Versions** kafka-python versions prior to 2.3.2 **Description** A denial-of-service issue exists in the protocol parser. A malicious broker or machine-in-the-middle attacker can exhaust memory or hang connections by sending a crafted 4-byte frame length value that lacks bounds validation. By sending this value through the `receive bytes()` function, an attacker can trigger a multi-gigabyte memory allocation or an uncaught `ValueError`. This leaves the connection in a broken state, causing requests to hang and consumers to stop heartbeating until a restart occurs. **Recommendations** Update to version 2.3.2 or later.

**Name of the Vulnerable Software and Affected Versions** kafka-python versions prior to 2.3.2 **Description** A denial-of-service issue exists in the SCRAM authentication handling. A malicious or machine-in-the-middle broker can freeze the client event loop by providing an excessively large iteration count. In the `scram.py` file, the `ScramClient.process server first message()` function passes the broker-controlled SCRAM iteration count directly to `hashlib.pbkdf2 hmac()` without validation. This blocks producer sends, consumer polls, admin operations, and heartbeats, potentially leading to consumer group eviction and repeated reconnect failures. **Recommendations** Update to version 2.3.2 or later.

**Name of the Vulnerable Software and Affected Versions** Medplum versions prior to 5.1.14 **Description** An issue in the subscription worker allows authenticated users to perform unauthorized internal network requests. By creating FHIR Subscription resources with arbitrary endpoint URLs, attackers can target internal addresses such as cloud instance metadata services, internal databases, or container orchestration endpoints. This can lead to the exfiltration of IAM credentials and patient health records through the POST body, which contains full FHIR resource payloads. Server-Side Request Forgery (SSRF) is a flaw where an attacker can force a server to make requests to an unintended location. **Recommendations** Update to version 5.1.14 or later.

**Name of the Vulnerable Software and Affected Versions** Claude HUD versions 0.0.0 through 0.0.12 **Description** Local attackers can execute arbitrary commands on Windows systems by manipulating the `COMSPEC` environment variable. By setting `COMSPEC` to an arbitrary binary path before the software performs its version check, the `execFile()` function executes the attacker-supplied executable with cmd.exe arguments, leading to arbitrary code execution. **Recommendations** Update to the version containing commit 234d9aa.

**Name of the Vulnerable Software and Affected Versions** Claude HUD versions 0.0.0 through 0.0.12 **Description** A path traversal issue allows attackers to read arbitrary files by providing an unvalidated `transcript path` value via stdin JSON. This enables access to any file readable by the process. Additionally, file metadata is written to a persistent cache file with insufficient permissions, which creates a forensic record of the accessed paths that remains after the process exits. **Recommendations** Update to the version containing commit 234d9aa.

**Name of the Vulnerable Software and Affected Versions** Claude HUD versions 0.0.0 through 0.0.12 **Description** The software constructs OSC 8 terminal hyperlink escape sequences using raw `cwd` and `branchUrl` values without stripping control characters or encoding embedded values. This allows attackers to inject arbitrary ANSI codes into terminal sessions by embedding ESC+backslash sequences in the current working directory or branch URL. Potential impacts include text color changes, forged prompts, OSC 52 clipboard writes, or triggering outbound HTTP requests to attacker-controlled remotes when hyperlinks are clicked. **Recommendations** Update to the version containing commit 234d9aa. As a temporary workaround, avoid using directories or branch URLs containing control characters in the `cwd` and `branchUrl` variables.

**Name of the Vulnerable Software and Affected Versions** Quark Drive versions prior to 0.8.5 **Description** A stored cross-site scripting issue exists in the System Configuration page. The template renders `push config` key names using the Vue.js `v-html` directive without proper escaping. Authenticated attackers can inject HTML or JavaScript payloads as key names via the "POST /update" endpoint. These payloads are saved to disk and executed in the browsers of all authenticated users who visit the System Configuration tab, potentially leading to session cookie exfiltration and unauthorized authenticated actions. **Recommendations** Update to version 0.8.5 or later.

**Name of the Vulnerable Software and Affected Versions** Quark Drive versions prior to 0.8.5 **Description** A mass assignment issue exists in the "POST /update" endpoint. Authenticated attackers can overwrite administrator credentials by submitting an arbitrary webui object to the `config data` dictionary. This is possible due to insufficient deny-list filtering, which allows the permanent replacement of stored login credentials. Consequently, legitimate administrators may be locked out, and attackers can gain persistent access to all configured tasks, cloud tokens, and notification services. **Recommendations** Update to version 0.8.5 or later.