Remote code execution in cdnjs of Cloudflare by @ryotkak A | PT SWARM
Remotecode execution in cdnjs of Cloudflare by @ryotkak
A path traversal in Cloudfare's cdnjs library update server during archive extraction could be used to execute arbitrary commands, and as a result, cdnjs could be completely compromised, affecting around 12.7% of all websites on the internet once caches are expired.
Contents: • Preface • TL;DR • About cdnjs • Reason for investigation • Initial investigation • Investigation of automatic update • Path traversal • Demonstration of vulnerability • Incident • Determinate impact • Conclusion • Timeline
Positive Technologies Offensive Team: twitter.com/ptswarm. This is the channel where we share articles/vulnerabilities/scripts/etc, not necessarily authored by us, that we find interesting...