PT-2023-26356 · Unknown+1 · Opennds Captive Portal+1

Bluewavenet

Published

2023-11-17

Updated

2024-06-20

CVE-2023-38316

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions OpenNDS Captive Portal versions prior to 10.1.2 OpenNDS Captive Portal version 10.1.2 is not affected, as the issue is fixed in version 10.1.3.

Description An issue was discovered in OpenNDS Captive Portal. When the custom unescape callback is enabled, attackers can execute arbitrary OS commands by inserting them into the URL portion of HTTP GET requests.

Recommendations For OpenNDS Captive Portal versions prior to 10.1.2, update to version 10.1.3 to resolve the issue. As a temporary workaround, consider disabling the custom unescape callback until a patch is available.

Fix

Improper Encoding or Escaping of Output

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-116

Related Identifiers

CVE-2023-38316

Affected Products

Debian

Opennds Captive Portal

PT-2023-26356 · Unknown+1 · Opennds Captive Portal+1

CVE-2023-38316

Weakness Enumeration

Related Identifiers

Affected Products

References · 15