| शीर्षक | Sangfor Operation and Maintenance Management System (OSM / 运维安全管理系统) 3.0.8 OS Command Injection |
|---|
| विवरण | A critical Remote Command Execution (RCE) vulnerability exists in the Sangfor Operation and Maintenance Management System (OSM) version 3.0.8. The vulnerability is located in the /isomp-protocol/protocol/session endpoint.
The application fails to properly sanitize user input in the hostname parameter of an HTTP POST request. Code analysis reveals that the backend retrieves the hostname parameter and concatenates it directly into a shell command string (likely related to network connection tests or session initialization). This string is then executed by the system shell. Because the application does not filter shell metacharacters, an unauthenticated remote attacker can inject commands using a semicolon (;) or other operators. This allows the execution of arbitrary system commands with the privileges of the web service (typically root or tomcat). |
|---|
| स्रोत | ⚠️ https://github.com/master-abc/cve/issues/14 |
|---|
| उपयोगकर्ता | jiefengliang (UID 93721) |
|---|
| सबमिशन | 30/12/2025 05:42 PM (6 महीनों पहले) |
|---|
| संयम | 09/01/2026 06:12 PM (10 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 340347 [Sangfor Operation and Maintenance Management System तक 3.0.8 session SessionController होस्टनाम अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|