Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/111772209402566598">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Thursday, 18-Jan-2024 01:23:28 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250225114715.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/111745511323478459" rel="in-reply-to">in reply to</a></div></section><article><p>We have the first vendor product actually vulnerable to that Apache Struts vuln from December 2023 - CVE-2023-50164.</p><p>Product: Trackplus Allegra<br>Tailored POC: <a href="https://srcincite.io/pocs/src-2024-0001.py.txt" rel="nofollow noreferrer">https://srcincite.io/pocs/src-2024-0001.py.txt</a><br>Advisory: <a href="https://srcincite.io/advisories/src-2024-0001/" rel="nofollow noreferrer">https://srcincite.io/advisories/src-2024-0001/</a></p><p>Complete with ../.. directory traversal too. </p><p>Disclosure Timeline:</p><p>2023-11-08 – Vulnerability reported to security@struts.apache.org</p><p>2023-12-21 – Silently patched by the vendor</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2601140#notice-5151857">In conversation</a><time datetime="2024-01-18T01:23:28+09:00" title="Thursday, 18-Jan-2024 01:23:28 JST">about a year ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/111772209402566598" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/111772209402566598">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/2126448">Untitled attachment</a></label><br><a href="https://cyberplace.social/system/media_attachments/files/111/772/200/228/638/835/original/a170df948790e69c.png" rel="external">https://cyberplace.social/system/media_attachments/files/111/772/200/228/638/835/original/a170df948790e69c.png</a></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/2126449">Untitled attachment</a></label><br><div>Invalid filename.</div></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/2126450">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Thursday, 18-Jan-2024 01:23:28 JST Kevin Beaumont
in reply to
We have the first vendor product actually vulnerable to that Apache Struts vuln from December 2023 - CVE-2023-50164.
Product: Trackplus Allegra
Tailored POC: https://srcincite.io/pocs/src-2024-0001.py.txt
Advisory: https://srcincite.io/advisories/src-2024-0001/
Complete with ../.. directory traversal too.
Disclosure Timeline:
2023-11-08 – Vulnerability reported to security@struts.apache.org
2023-12-21 – Silently patched by the vendor
In conversationabout a year ago from cyberplace.socialpermalink
Attachments

Public

Embed Notice

HTML Code

Corresponding Notice