Detections
Analytics
Versa Director Authenticated Remote Code Execution (CVE-2024-39717)
high Nessus Plugin ID 207794
Language:
Synopsis
The version of Versa Director installed on the remote host is affected by an authenticated remote code execution vulnerability.Description
The version of Versa Director installed on the remote host is affected by an authenticated remote code execution vulnerability:- The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged with Provider-Data-Center-Admin or Provider-Data-Center-System-Admin. (Tenant level users do not have this privilege). The “Change Favicon” (Favorite Icon) option can be mis-used to upload a malicious file ending with .png extension to masquerade as image file. This is possible only after a user with Provider-Data-Center-Admin or Provider-Data-Center-System-Admin has successfully authenticated and logged in.
Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Versa Director 22.1.4 or later.See Also
Plugin Details
Severity: High
ID: 207794
File Name: versa_director_22_1_4.nasl
Version: 1.2
Type: local
Agent: unix
Family: Misc.
Published: 9/26/2024
Updated: 9/26/2024
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.4
CVSS v2
Risk Factor: High
Base Score: 8.3
Temporal Score: 6.9
Vector: CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C
CVSS Score Source: CVE-2024-39717
CVSS v3
Risk Factor: High
Base Score: 7.2
Temporal Score: 6.7
Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:versa-networks:versa_director
Required KB Items: installed_sw/Versa Director
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/26/2024
Vulnerability Publication Date: 8/26/2024
CISA Known Exploited Vulnerability Due Dates: 9/13/2024
Reference Information
CVE: CVE-2024-39717