CISA KEV 정보
| 취약점명 | GitLab Community and Enterprise Editions Remote Code Execution Vulnerability |
|---|---|
| 설명 | GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnerable to remote code execution. Workhorse passes image file extensions through ExifTool, which improperly validates the image files. |
| 조치사항 | Apply updates per vendor instructions. |
| 랜섬웨어 캠페인 악용 | Known |
| CWE | CWE-20 | CWE-95 |
| 등록일 (KEV) | 2021-11-03 |
| 조치 기한 | 2021-11-17 |
| 추가 참고 | https://nvd.nist.gov/vuln/detail/CVE-2021-22205 |
NVD 상세 정보
CVSS v3.1: 10.0 CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCVSS v2.0: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P설명: An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.
CWE: CWE-94 | CWE-94
참조
- http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html [Exploit, Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html [Exploit, Third Party Advisory, VDB Entry]
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22205.json [Vendor Advisory]
- https://gitlab.com/gitlab-org/gitlab/-/issues/327121 [Broken Link]
- https://hackerone.com/reports/1154542 [Permissions Required, Third Party Advisory]
- http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html [Exploit, Third Party Advisory, VDB Entry]
- http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html [Exploit, Third Party Advisory, VDB Entry]
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22205.json [Vendor Advisory]
- https://gitlab.com/gitlab-org/gitlab/-/issues/327121 [Broken Link]
- https://hackerone.com/reports/1154542 [Permissions Required, Third Party Advisory]
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-22205 [US Government Resource]
This product uses the NVD API but is not endorsed or certified by the NVD.