CVE-2023-39965 - OpenCVE

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0 has a patch for this issue.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Fit2cloud	1panel

Configuration 1 [-]

cpe:2.3:a:fit2cloud:1panel:1.4.3:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0
https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-08-10T17:42:05.793Z

Updated: 2024-08-02T18:18:10.152Z

Reserved: 2023-08-07T16:27:27.076Z

Link: CVE-2023-39965

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-08-10T18:15:11.213

Modified: 2023-09-08T16:56:15.427

Link: CVE-2023-39965

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-39965", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-08-07T16:27:27.076Z", "datePublished": "2023-08-10T17:42:05.793Z", "dateUpdated": "2024-08-02T18:18:10.152Z"}, "containers": {"cna": {"title": "1Panel Unauthorized access in Backend", "problemTypes": [{"descriptions": [{"cweId": "CWE-863", "lang": "en", "description": "CWE-863: Incorrect Authorization", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555"}, {"name": "https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0", "tags": ["x_refsource_MISC"], "url": "https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0"}], "affected": [{"vendor": "1Panel-dev", "product": "1Panel", "versions": [{"version": "= 1.4.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-08-10T17:42:05.793Z"}, "descriptions": [{"lang": "en", "value": "1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0 has a patch for this issue.\n"}], "source": {"advisory": "GHSA-85cf-gj29-f555", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:18:10.152Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555"}, {"name": "https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fit2cloud:1panel:1.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "9FB1DBC8-57BC-4F73-AB3E-E87FABCFDBCF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0 has a patch for this issue.\n"}, {"lang": "es", "value": "1Panel es un panel de gesti\u00f3n de operaciones y mantenimiento de servidores Linux de c\u00f3digo abierto. En la versi\u00f3n 1.4.3, los atacantes autenticados pueden descargar archivos arbitrarios a trav\u00e9s de la interfaz API. Este c\u00f3digo tiene acceso no autorizado. Los atacantes pueden descargar libremente el contenido del archivo en el sistema de destino. Esto puede causar una gran fuga de informaci\u00f3n. La versi\u00f3n 1.5.0 tiene un parche para este problema."}], "id": "CVE-2023-39965", "lastModified": "2023-09-08T16:56:15.427", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 3.7, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2023-08-10T18:15:11.213", "references": [{"source": "security-advisories@github.com", "tags": ["Product", "Release Notes"], "url": "https://github.com/1Panel-dev/1Panel/releases/tag/v1.5.0"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-85cf-gj29-f555"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-863"}], "source": "security-advisories@github.com", "type": "Primary"}]}