HomePentest-Tools.com Logo

Node-Red - Local File Inclusion (CVE-2021-3223)

Severity
CVSSv3 Score
7.5
Vulnerability description

Node-Red Dashboard is affected by a Local File Inclusion through a Path Traversal vulnerability, located on the /ui_base/js endpoint. The root cause of this vulnerability consists in insufficient validation of the HTTP input request in version 2.26.2 of Node-Red Dashboard. This allows attackers to read sensitive information from the target system by sending a special crafted HTTP GET request to the vulnerable endpoint.

Risk description

The risk exists that a remote unauthenticated attacker could exploit this vulnerability to read sensitive information from arbitrary files located on the file system of the server.

Exploit capabilities

Sniper can read arbitrary files from the target system and extract them as evidence.

Recommendation

Upgrade Node-Red Dashboard to a version equal or higher than 2.26.3.

Codename
Not available
Detectable with
Network Scanner
Exploitable with Sniper
Yes
Vuln date
Jan 2021
Published at
Updated at
Software Type
Web server
Vendor
Node
Product
Red