PT-2024-11775 · Logpoint · Logpoint

Timo Fahlenbock

Published

2024-04-27

Updated

2024-10-25

CVE-2022-48684

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Logpoint versions prior to 7.1.1

Description An issue was discovered in the search template of Logpoint, where template injection was seen. The search template uses jinja templating for generating dynamic data, which could be abused to achieve code execution. Any user with access to create a search template can leverage this to execute code as the loginspect user.

Recommendations For versions prior to 7.1.1, upgrade Logpoint to the latest version to mitigate the risk of remote attacks. As a temporary workaround, consider restricting access to create search templates to minimize the risk of exploitation.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2022-48684

Affected Products

Logpoint

PT-2024-11775 · Logpoint · Logpoint

CVE-2022-48684

Weakness Enumeration

Related Identifiers

Affected Products

References · 5