PT-2022-23154 · Discourse · Discourse

Jomaxro

Published

2022-09-29

Updated

2024-03-06

CVE-2022-36066

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 2.8.9 Discourse versions prior to 2.9.0.beta10

Description The issue allows admins to upload maliciously crafted Zip or Gzip Tar archives, enabling them to write files at arbitrary locations and trigger remote code execution.

Recommendations For versions prior to 2.8.9, update to version 2.8.9 or later on the stable branch. For versions prior to 2.9.0.beta10, update to version 2.9.0.beta10 or later on the beta and tests-passed branches.

Exploit

Fix

RCE

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

BIT-DISCOURSE-2022-36066

CVE-2022-36066

GHSA-GRVH-QCPG-HFMV

Affected Products

Discourse

PT-2022-23154 · Discourse · Discourse

CVE-2022-36066

Weakness Enumeration

Related Identifiers

Affected Products

References · 8