CVE-2024-34066

Arbitrary File Write/Read in Pterodactyl wings

Severity Score

8.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

Pterodactyl wings is the server control plane for Pterodactyl Panel. If the Wings token is leaked either by viewing the node configuration or posting it accidentally somewhere, an attacker can use it to gain arbitrary file write and read access on the node the token is associated to. This issue has been addressed in version 1.11.12 and users are advised to upgrade. Users unable to upgrade may enable the `ignore_panel_config_updates` option as a workaround.

Pterodactyl Wings es el plano de control del servidor para Pterodactyl Panel. Si el token Wings se filtra al ver la configuración del nodo o al publicarlo accidentalmente en algún lugar, un atacante puede usarlo para obtener acceso de escritura y lectura de archivos arbitrarios en el nodo al que está asociado el token. Este problema se solucionó en la versión 1.11.12 y se recomienda a los usuarios que actualicen. Los usuarios que no puedan actualizar pueden habilitar la opción `ignore_panel_config_updates` como workaround.

*Credits: N/A

CVSS Scores

GitHubv3.1 8.4

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-04-30 CVE Reserved
2024-05-03 CVE Published
2024-05-04 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-552: Files or Directories Accessible to External Parties

CAPEC

References (2)

URL	Tag	Source
https://github.com/pterodactyl/wings/commit/5415f8ae07f533623bd8169836dd7e0b933964de	X_refsource_misc
https://github.com/pterodactyl/wings/security/advisories/GHSA-gqmf-jqgv-v8fw	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Pterodactyl Search vendor "Pterodactyl"		Wings Search vendor "Pterodactyl" for product "Wings"				< 1.11.12 Search vendor "Pterodactyl" for product "Wings" and version " < 1.11.12"		en		Affected