CVE-2019-8341
Jinja2 2.10 - 'from_string' Server Side Template Injection
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
An issue was discovered in Jinja2 2.10. The from_string function is prone to Server Side Template Injection (SSTI) where it takes the "source" parameter as a template object, renders it, and then returns it. The attacker can exploit it with {{INJECTION COMMANDS}} in a URI. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid because users shouldn't use untrusted templates without sandboxing
** EN DISPUTA ** Se ha descubierto un problema en Jinja2 2.10. La función from_string es propensa a una Server Side Template Injection (SSTI), donde toma el parámetro "source" como objeto de plantilla, lo renderiza y lo devuelve. El atacante puede explotar esto mediante {{COMANDOS DE INYECCIÓN}} en un URI.NOTA: El mantenedor de software y varios terceros creen que esta vulnerabilidad no es válida porque los usuarios no deben usar plantillas no confiables sin sandboxing.
Jinja2 version 2.10 suffers from a command injection vulnerability.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-02-15 CVE Reserved
- 2019-02-15 CVE Published
- 2024-07-08 EPSS Updated
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (6)
URL | Tag | Source |
---|---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1677653 | Issue Tracking | |
https://bugzilla.suse.com/show_bug.cgi?id=1125815 | Issue Tracking | |
https://github.com/JameelNabbo/Jinja2-Code-execution | Broken Link |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/46386 | 2024-08-04 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Pocoo Search vendor "Pocoo" | Jinja2 Search vendor "Pocoo" for product "Jinja2" | 2.10 Search vendor "Pocoo" for product "Jinja2" and version "2.10" | - |
Affected
| ||||||
Opensuse Search vendor "Opensuse" | Leap Search vendor "Opensuse" for product "Leap" | 15.0 Search vendor "Opensuse" for product "Leap" and version "15.0" | - |
Affected
| ||||||
Opensuse Search vendor "Opensuse" | Leap Search vendor "Opensuse" for product "Leap" | 42.3 Search vendor "Opensuse" for product "Leap" and version "42.3" | - |
Affected
|