CVE-2024-47180

Name of the Vulnerable Software and Affected Versions Shields.io versions prior to server-2024-09-25

Description The issue concerns a remote execution vulnerability via the JSONPath library used by the Dynamic JSON/Toml/Yaml badges. This vulnerability allows any user with access to make a request to a URL on the instance to execute code by crafting a malicious JSONPath expression. All users who self-host an instance are vulnerable. The problem was fixed in version server-2024-09-25.

Recommendations For versions prior to server-2024-09-25, update to server-2024-09-25 or later. As a temporary workaround, consider blocking access to the endpoints "/badge/dynamic/json", "/badge/dynamic/toml", and "/badge/dynamic/yaml" (e.g., via a firewall or reverse proxy in front of your instance) to prevent the exploitable endpoints from being accessed. For those who follow the rolling tag on DockerHub, update to the latest version by running docker pull shieldsio/shields:next.