Kimai (Authenticated) SSTI to RCE by Uploading a Malicious Twig File
CVE-2023-46245

7.2HIGH

Key Information:

Vendor: kimai
Status: kimai
Vendor: CVE Published:; 31 October 2023

What is CVE-2023-46245?

Kimai, a popular web-based multi-user time-tracking application, has a vulnerability that allows for Server-Side Template Injection (SSTI). This issue notably affects versions 2.1.0 and prior, enabling malicious users to upload specifically crafted Twig files that exploit the application's PDF and HTML rendering capabilities. If successfully executed, this could lead to Remote Code Execution (RCE), allowing attackers to gain control over the affected system. As of the latest information, there are no patches or known workarounds available, highlighting the urgent need for users to assess their vulnerability and take protective measures.

Affected Version(s)

kimai <= 2.1.0

References

https://github.com/kimai/kimai/security/advisories/GHSA-f...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 31, 2023
Vulnerability Reserved
Oct 19, 2023

CVE-2023-46245 Data

JSON