CVE-2020-35131

Published: Jan 8, 2021Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Cockpit before 0.6.1 allows an attacker to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.

Affected (1)

Products: Agentejo: Cockpit

Agentejo

1 product

Cockpit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Agentejo Cockpit	Before 0.6.1

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (6)

https://github.com/agentejo/cockpit/commits/next/lib/MongoLite/Database.php

Source: cve@mitre.org

Third Party Advisory

https://github.com/agentejo/cockpit/releases/tag/0.6.1

Source: cve@mitre.org

Release NotesThird Party Advisory

https://www.exploit-db.com/exploits/49390

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://github.com/agentejo/cockpit/commits/next/lib/MongoLite/Database.php

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/agentejo/cockpit/releases/tag/0.6.1

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesThird Party Advisory

https://www.exploit-db.com/exploits/49390

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.