Lucene search

@huntr_aiVULNRICHMENT:CVE-2024-5827

HistoryJun 28, 2024 - 7:27 p.m.

CVE-2024-5827 Arbitrary File Write by Prompt Injection via DuckDB SQL in vanna-ai/vanna

2024-06-2819:27:33

CWE-434

@huntr_ai

github.com

cve-2024-5827

arbitrary file write

prompt injection

duckdb sql

vanna v0.3.4

flask web apis

command execution

backdoors

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

22.2%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

total

JSON

Vanna v0.3.4 is vulnerable to SQL injection in its DuckDB integration exposed to its Flask Web APIs. Attackers can inject malicious SQL training data and generate corresponding queries to write arbitrary files on the victim’s file system, such as backdoor.php with contents <?php system($_GET[0]); ?>. This can lead to command execution or the creation of backdoors.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:vanna-ai:vanna:0.3.4:*:*:*:*:*:*:*"
    ],
    "vendor": "vanna-ai",
    "product": "vanna",
    "versions": [
      {
        "status": "affected",
        "version": "0.3.4"
      }
    ],
    "defaultStatus": "affected"
  }
]

References

huntr.com/bounties/e4e64a51-618b-41d0-8f56-1d2146d8825e

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

22.2%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

total

JSON

Related for VULNRICHMENT:CVE-2024-5827