CVE-2024-41661

Name of the Vulnerable Software and Affected Versions reNgine versions 1.2.0 through 2.1.1

Description The issue is related to an authenticated command injection vulnerability in the WAF detection tool of reNgine, an automated reconnaissance framework for web applications. This vulnerability allows an authenticated attacker to remotely execute arbitrary commands as the root user. The url query parameter is passed to subprocess.check output without sanitization, resulting in the command injection vulnerability. The affected API endpoint is accessible to authenticated users with any user role, and since the process runs as root, an attacker gains root access.

Recommendations For reNgine versions 1.2.0 through 2.1.1, update to a version that includes the patch from commit edd3c85ee16f93804ad38dac5602549d2d30a93e to resolve the issue. As a temporary workaround, consider restricting access to the WAF detection tool to minimize the risk of exploitation.