Cyber Resilience

CVE-2023-29689

CriticalPublic PoC

Published: 04 August 2023

Published
04 August 2023
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.6082 98.3th percentile
Risk Priority 56 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-29689 is a critical-severity an unspecified weakness vulnerability in Pyrocms Pyrocms. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 1.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

PyroCMS version 3.9 is affected by a remote code execution vulnerability that stems from a server-side template injection flaw. The issue permits an attacker to supply crafted template input that is processed by the server, resulting in execution of arbitrary commands on the underlying host. The vulnerability received a CVSS 3.1 base score of 9.8, reflecting network-accessible attack vector, low complexity, and no required privileges or user interaction.

An unauthenticated remote attacker can exploit the flaw by submitting malicious template expressions through exposed application endpoints. Successful exploitation grants the ability to run arbitrary code, potentially leading to full system compromise including data exfiltration, persistence, or lateral movement within the affected environment.

Public exploit code and detailed technical write-ups have been posted to Packet Storm and independent security blogs, indicating that working proof-of-concept material is readily available. The associated EPSS score has reached 0.6082, a level that reflects substantial real-world exploitation interest following disclosure. No official vendor advisory or patch information appears among the referenced sources.

EU & UK References

Vulnerability details

PyroCMS 3.9 contains a remote code execution (RCE) vulnerability that can be exploited through a server-side template injection (SSTI) flaw. This vulnerability allows a malicious attacker to send customized commands to the server and execute arbitrary code on the affected…

more

system.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

pyrocms
pyrocms
3.9

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References