CVE-2021-45785

Name of the Vulnerable Software and Affected Versions TruDesk Help Desk/Ticketing Solution version 1.1.11

Description The issue allows an attacker to perform a Cross-Site Request Forgery (CSRF) attack, enabling them to restart the server and cause a Denial of Service (DoS) attack. To exploit this, the attacker must create a webpage that sends a GET request to the "/api/v1/admin/restart" endpoint. The victim, who must have sufficient privileges, would then visit this webpage, triggering the server restart. The attacker needs to know the full URL of the TruDesk instance to craft the malicious webpage.

Recommendations For TruDesk Help Desk/Ticketing Solution version 1.1.11, as a temporary workaround, consider restricting access to the "/api/v1/admin/restart" endpoint until a patch is available. Additionally, limiting the ability for users to perform server restarts based on their privileges can help minimize the risk of exploitation.