CVE-2023-1305

Published: Mar 21, 2023Modified: Feb 26, 2025

8.1

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

An authenticated attacker can leverage an exposed “box” object to read and write arbitrary files from disk, provided those files can be parsed as yaml or JSON. This issue was resolved in the Managed and SaaS deployments on February 1, 2023, and in version 23.2.1 of the Self-Managed version of InsightCloudSec.

Affected (3)

Products: Rapid7: Insightappsec, Insightcloudsec

2 products

Insightcloudsec

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Rapid7 Insightappsec	Before 23.2.1
Rapid7 Insightcloudsec	Before 2023.02.01
Rapid7 Insightcloudsec	Before 2023.02.01

Related CWEs

Improper Isolation or Compartmentalization

The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

References (4)

https://docs.divvycloud.com/changelog/23321-release-notes

Source: cve@rapid7.com

Release Notes

https://nephosec.com/exploiting-rapid7s-insightcloudsec/

Source: cve@rapid7.com

ExploitThird Party Advisory

https://docs.divvycloud.com/changelog/23321-release-notes

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://nephosec.com/exploiting-rapid7s-insightcloudsec/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.