PT-2024-33316 · Snipe-It · Snipe-It
Mickaël Benassouli
+1
·
Published
2024-10-10
·
Updated
2025-01-07
·
CVE-2024-48987
CVSS v4.0
8.6
High
| Vector | AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Snipe-IT versions prior to 7.0.10
Description
The issue allows remote code execution when an attacker knows the
APP KEY, which is associated with cookie serialization. This is worsened by the availability of .env files from the product's repository that contain default APP KEY values.Recommendations
For versions prior to 7.0.10, update to version 7.0.10 or later to resolve the issue. As a temporary workaround, consider restricting access to the
APP KEY and ensuring that .env files do not contain default values.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Snipe-It