CVE-2022-29464

Description from NVD

Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps directory. This affects WSO2 API Manager 2.2.0 and above through 4.0.0; WSO2 Identity Server 5.2.0 and above through 5.11.0; WSO2 Identity Server Analytics 5.4.0, 5.4.1, 5.5.0, and 5.6.0; WSO2 Identity Server as Key Manager 5.3.0 and above through 5.10.0; and WSO2 Enterprise Integrator 6.2.0 and above through 6.6.0.

Information Acquisition Date:2022-06-01T14:54Z
CVSS 2.0: 10.0 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:C/I:C/A:C

NVD References

 https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2021-1738
     source:MISC
     tags:Mitigation    Vendor Advisory    
 [oss-security] 20220422 CVE-2022-29464 :: WSO2 Unrestricted arbitrary file upload, and remote code to execution vulnerability.
     source:MLIST
     tags:Mailing List    Third Party Advisory    
 https://github.com/hakivvi/CVE-2022-29464
     source:MISC
     tags:Exploit    Third Party Advisory    
 http://packetstormsecurity.com/files/166921/WSO-Arbitrary-File-Upload-Remote-Code-Execution.html
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Apache(1 tweets)

List of frequently cited URLs

URLNum of Times Referred to
https://cvetrends.com55
http://cyberiqs.com/latestnews41
https://lists.astaro.com/ASGV9-IPS-rules.html#027
https://opsmtrs.com/2ZFbaTl11
https://www.vulnmachines.com9
https://www.trendmicro.com/en_us/research/22/e/patch-your-w...7
https://www.rapid7.com/blog/post/2022/04/22/opportunistic-e...6
https://github.com/hakivvi/CVE-2022-294645
https://twitter.com/vcslab/status/15163692624697384964
https://www.cisa.gov/known-exploited-vulnerabilities-catalog3
https://docs.wso2.com/display/Security/Security+Advisory+WS...3
https://cert-agid.gov.it/news/riscontrato-lo-sfruttamento-a...3
https://blog.assetnote.io/2022/04/13/watchguard-firebox-rce3
https://research.trendmicro.com/3PT3NgM3
https://ipssignatures.appspot.com/?cve=CVE-2022-294643

Information from Twitter

User URL Info Source Date
JenneferCarmal1 https://twitter.com/JenneferCarmal1/status/1645543299992768... Source JenneferCarmal1 1645543302458929152 2023/04/11
moon_berniece https://twitter.com/moon_berniece/status/164561909213548544... Source moon_berniece    1645619094400520192 2023/04/11
ipssignatures https://twitter.com/rojinroykolady/status/1648356850134286339 Source ipssignatures    1648418126495899648 2023/04/19

List of frequently cited URLs

URLNum of Times Referred to
cvetrends.com55
cyberiqs.com41
lists.astaro.com27
opsmtrs.com11
www.vulnmachines.com9
www.trendmicro.com7
www.rapid7.com6
github.com5
twitter.com4
www.cisa.gov3
docs.wso2.com3
cert-agid.gov.it3
blog.assetnote.io3
research.trendmicro.com3
ipssignatures.appspot.com3

Information from Twitter

User URL Info Source
JenneferCarmal1 twitter.com Show Tweet
moon_berniece twitter.com Show Tweet
ipssignatures twitter.com Show Tweet
GitHub Search Results: Up to 10
NameURL
hakivvi/CVE-2022-29464 https://github.com/hakivvi/CVE-2022-29464
oppsec/WSOB https://github.com/oppsec/WSOB
h3v0x/CVE-2022-29464 https://github.com/h3v0x/CVE-2022-29464
Chocapikk/CVE-2022-29464 https://github.com/Chocapikk/CVE-2022-29464
Inplex-sys/CVE-2022-29464-loader https://github.com/Inplex-sys/CVE-2022-29464-loader
mr-r3bot/WSO2-CVE-2022-29464 https://github.com/mr-r3bot/WSO2-CVE-2022-29464
LinJacck/CVE-2022-29464 https://github.com/LinJacck/CVE-2022-29464
Anonymous-ghost/AttackWebFrameworkTools-5.0 https://github.com/Anonymous-ghost/AttackWebFrameworkTools-5.0
0xAgun/CVE-2022-29464 https://github.com/0xAgun/CVE-2022-29464
lowkey0808/cve-2022-29464 https://github.com/lowkey0808/cve-2022-29464
GitHub Search Results: Up to 10
NameURL
hakivvi/CVE-2022-29464 github.com
oppsec/WSOB github.com
h3v0x/CVE-2022-29464 github.com
Chocapikk/CVE-2022-29464 github.com
Inplex-sys/CVE-2022-29464-loader github.com
mr-r3bot/WSO2-CVE-2022-29464 github.com
LinJacck/CVE-2022-29464 github.com
Anonymous-ghost/AttackWebFrameworkTools-5.0 github.com
0xAgun/CVE-2022-29464 github.com
lowkey0808/cve-2022-29464 github.com
2023/04/19 Score : 2
Added Har-sia Database : 2022/04/19
Last Modified : 2023/04/19
Highest Scored Date : 2022/04/23
Highest Score : 56