Remote Command Execution Vulnerability in Gogs

CVE-2022-1884

9.8CRITICAL

Key Information

Vendor: Gogs
Status: Gogs/gogs
Vendor: CVE Published:; 15 November 2024

Summary

A remote command execution vulnerability exists in gogs/gogs versions <=0.12.7 when deployed on a Windows server. The vulnerability arises due to improper validation of the `tree_path` parameter during file uploads. An attacker can set `tree_path=.git.` to upload a file into the .git directory, allowing them to write or rewrite the `.git/config` file. If the `core.sshCommand` is set, this can lead to remote command execution.

Affected Version(s)

gogs/gogs <= unspecified

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Risk change from: null to: 10 - (CRITICAL)
Nov 15, 2024
Vulnerability published.
Nov 15, 2024
Vulnerability Reserved.
May 25, 2022

Collectors

NVD DatabaseMitre Database