Vulnerability CVE-2022-36633
Published: 2022-08-24

Description:
Teleport 9.3.6 is vulnerable to Command injection leading to Remote Code Execution. An attacker can craft a malicious ssh agent installation link by URL encoding a bash escape with carriage return line feed. This url encoded payload can be used in place of a token and sent to a user in a social engineering attack. This is fully unauthenticated attack utilizing the trusted teleport server to deliver the payload.

See advisories in our WLB2 database:
Topic
Author
Date
High
Teleport 9.3.6 Command Injection
Brian Landrum
23.08.2022
High
Teleport 10.1.1 Remote Code Execution
Brian Landrum
24.09.2022

Type:

CWE-78

 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 References:
https://github.com/gravitational/teleport
https://packetstormsecurity.com/files/168137/Teleport-9.3.6-Command-Injection.html
Copyright 2024, cxsecurity.com

 

Back to Top