.. / CVE-2024-27348

Exploit for Apache HugeGraph-Server < 1.3.0 - Unauthenticated Remote Code Execution (CVE-2024-27348)

Description:

Apache HugeGraph-Server is an open-source graph database that provides a scalable and high-performance solution for managing and analyzing large-scale graph data. It is commonly used in Java8 and Java11 environments. However, versions prior to 1.3.0 are vulnerable to a remote command execution (RCE) vulnerability in the gremlin component.

Proof of Concept

PoC exploit

Nuclei Template

View the template here CVE-2024-27348.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2024/CVE-2024-27348.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2024-27348
http://www.openwall.com/lists/oss-security/2024/04/22/3
https://hugegraph.apache.org/docs/config/config-authentication/#configure-user-authentication
https://lists.apache.org/thread/nx6g6htyhpgtzsocybm242781o8w5kq9
https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2024-27348
https://github.com/Zeyad-Azima/CVE-2024-27348