CVE-2024-49366

Description

Nginx UI is a web user interface for the Nginx web server. Nginx UI v2.0.0-beta.35 and earlier gets the value from the json field without verification, and can construct a value value in the form of `../../`. Arbitrary files can be written to the server, which may result in loss of permissions. Version 2.0.0-beta.26 fixes the issue.

CVSS breakdown

CVSS 4.0

Attack Vector

Network

Attack Complexity

Low

Attack Requirements

None

Privileges Required

None

User Interaction

None

Confidentiality (Vulnerable System)

None

Integrity (Vulnerable System)

High

Availability (Vulnerable System)

None

Confidentiality (Subsequent System)

None

Integrity (Subsequent System)

None

Availability (Subsequent System)

None

Physical

Affected products

0xJacky / nginx-ui< 2.0.0-beta.36 – < 2.0.0-beta.36

References

VENDOR_ADVISORYhttps://github.com/0xJacky/nginx-ui/security/advisories/GHSA-prv4-rx44-f7jr
PATCHhttps://github.com/0xJacky/nginx-ui/releases/tag/v2.0.0-beta.36