PT-2021-14352 · Onedev · Onedev

Pwntester

Published

2021-01-15

Updated

2021-01-21

CVE-2021-21242

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions: OneDev versions prior to 4.0.3

Description: OneDev is an all-in-one devops platform. In OneDev, there is a critical issue that can lead to pre-auth remote code execution. The AttachmentUploadServlet deserializes untrusted data from the Attachment-Support header and does not enforce any authentication or authorization checks, which may lead to pre-auth remote code execution.

Recommendations: For versions prior to 4.0.3, update to version 4.0.3 or later, which removes the AttachmentUploadServlet and no longer uses deserialization, thus fixing the issue.

Fix

Deserialization of Untrusted Data

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502CWE-74

Related Identifiers

CVE-2021-21242

GHSA-5Q3Q-F373-2JV8

Affected Products

Onedev

PT-2021-14352 · Onedev · Onedev

CVE-2021-21242

Weakness Enumeration

Related Identifiers

Affected Products

References · 6