Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS12Z3hxLTZyY2YtcXdyd84ABANd
angular-base64-upload vulnerable to unauthenticated remote code execution
angular-base64-upload versions prior to v0.1.21 are vulnerable to unauthenticated remote code execution via the angular-base64-upload/demo/server.php
endpoint. Exploitation of this vulnerability involves uploading arbitrary file content to the server, which can subsequently accessed through the angular-base64-upload/demo/uploads
endpoint. This leads to the execution of previously uploaded content which enables the attacker to achieve code execution on the server.
NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Permalink: https://github.com/advisories/GHSA-vgxq-6rcf-qwrwJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS12Z3hxLTZyY2YtcXdyd84ABANd
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: 4 days ago
Updated: 4 days ago
CVSS Score: 10.0
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Identifiers: GHSA-vgxq-6rcf-qwrw, CVE-2024-42640
References:
- https://nvd.nist.gov/vuln/detail/CVE-2024-42640
- https://github.com/adonespitogo/angular-base64-upload
- https://www.zyenra.com/blog/unauthenticated-rce-in-angular-base64-upload.html
- https://github.com/rvizx/CVE-2024-42640
- https://github.com/advisories/GHSA-vgxq-6rcf-qwrw
Blast Radius: 19.7
Affected Packages
npm:angular-base64-upload
Dependent packages: 11Dependent repositories: 93
Downloads: 7,371 last month
Affected Version Ranges: < 0.1.21
Fixed in: 0.1.21
All affected versions: 0.0.4, 0.0.5, 0.0.9, 0.1.0, 0.1.1, 0.1.2, 0.1.3, 0.1.4, 0.1.5, 0.1.6, 0.1.8, 0.1.9, 0.1.10, 0.1.11, 0.1.12, 0.1.13, 0.1.14, 0.1.15, 0.1.16, 0.1.17, 0.1.18, 0.1.19
All unaffected versions: 0.1.21, 0.1.22, 0.1.23