ByteOS Network

Vulnerability Details :

CVE-2024-39930

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-04 Jul, 2024 | 00:00

Updated At-28 Aug, 2024 | 15:22

The built-in SSH server of Gogs through 0.13.0 allows argument injection in internal/ssh/ssh.go, leading to remote code execution. Authenticated attackers can exploit this by opening an SSH connection and sending a malicious --split-string env request if the built-in SSH server is activated. Windows installations are unaffected.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:04 Jul, 2024 | 00:00

Updated At:28 Aug, 2024 | 15:22

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

Metrics

Version	Base score	Base severity	Vector
3.1	9.9	CRITICAL	CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N

Version: 3.1

Base score: 9.9

Base severity: CRITICAL

Vector:

CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N

References

Hyperlink	Resource
https://github.com/gogs/gogs/releases	N/A
https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/	N/A
https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930	N/A

Hyperlink: https://github.com/gogs/gogs/releases

Resource: N/A

Hyperlink: https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/

Resource: N/A

Hyperlink: https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://github.com/gogs/gogs/releases	x_transferred
https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/	x_transferred
https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930	N/A

Hyperlink: https://github.com/gogs/gogs/releases

Resource:

x_transferred

Hyperlink: https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/

Resource:

x_transferred

Hyperlink: https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930

Resource: N/A

2. CISA ADP Vulnrichment

Affected Products

Vendor

gogs

Product

gogs

CPEs

cpe:2.3:a:gogs:gogs:*:*:*:*:*:*:*:*

Default Status

unknown

Versions

Affected

From 0 through 0.13.0 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-88	CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Type: CWE

CWE ID: CWE-88

Description: CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:04 Jul, 2024 | 16:15

Updated At:11 Apr, 2025 | 15:14

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.9	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Primary	3.1	9.9	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 9.9

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 9.9

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CPE Matches

gogs>>gogs>>Versions up to 0.13.0(inclusive)

cpe:2.3:a:gogs:gogs:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-88	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

CWE ID: CWE-88

Type: Secondary

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

References

Hyperlink	Source	Resource
https://github.com/gogs/gogs/releases	cve@mitre.org	Release Notes
https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/	cve@mitre.org	Third Party Advisory
https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930	cve@mitre.org	Exploit Third Party Advisory
https://github.com/gogs/gogs/releases	af854a3a-2127-422b-91ae-364da2661108	Release Notes
https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930	af854a3a-2127-422b-91ae-364da2661108	Exploit Third Party Advisory

Hyperlink: https://github.com/gogs/gogs/releases

Source: cve@mitre.org

Resource:

Release Notes

Hyperlink: https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/

Source: cve@mitre.org

Resource:

Third Party Advisory

Hyperlink: https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930

Source: cve@mitre.org

Resource:

Exploit

Third Party Advisory

Hyperlink: https://github.com/gogs/gogs/releases

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Release Notes

Hyperlink: https://www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

Hyperlink: https://www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Exploit

Third Party Advisory

Similar CVEs

5Records found

CVE-2024-39931

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-9.9||CRITICAL

EPSS-9.51% / 92.65%

7 Day CHG~0.00%

Published-04 Jul, 2024 | 00:00

Updated-02 Aug, 2024 | 04:33

Gogs through 0.13.0 allows deletion of internal files.

Vendor-n/a gogs

Product-n/a gogs

CWE ID-CWE-552

Files or Directories Accessible to External Parties

CVE-2024-39932

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-9.9||CRITICAL

EPSS-2.82% / 85.84%

7 Day CHG~0.00%

Published-04 Jul, 2024 | 00:00

Updated-02 Aug, 2024 | 04:33

Gogs through 0.13.0 allows argument injection during the previewing of changes.

Vendor-n/a gogs

Product-n/a gogs

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')

CVE-2024-39933

Matching Score-6

Assigner-MITRE Corporation

View Details

Matching Score-6

Assigner-MITRE Corporation

CVSS Score-7.7||HIGH

EPSS-0.30% / 52.86%

7 Day CHG~0.00%

Published-04 Jul, 2024 | 00:00

Updated-02 Aug, 2024 | 04:33

Gogs through 0.13.0 allows argument injection during the tagging of a new release.

Vendor-n/a gogs

Product-n/a gogs

CWE ID-CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CVE-2024-47553

Matching Score-4

Assigner-Siemens

View Details

Matching Score-4

Assigner-Siemens

CVSS Score-9.4||CRITICAL

EPSS-2.41% / 84.77%

7 Day CHG-0.40%

Published-08 Oct, 2024 | 08:40

Updated-11 Oct, 2024 | 20:04

A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly validate user input to the ```ssmctl-client``` command. This could allow an authenticated, lowly privileged remote attacker to execute arbitrary code with root privileges on the underlying OS.

Vendor-Siemens AG

Product-sinec_security_monitor Siemens SINEC Security Monitor sinec_security_monitor

CWE ID-CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CVE-2018-3856

Matching Score-4

Assigner-Talos

View Details

Matching Score-4

Assigner-Talos

CVSS Score-9.9||CRITICAL

EPSS-5.05% / 89.52%

7 Day CHG~0.00%

Published-23 Aug, 2018 | 22:00

Updated-16 Sep, 2024 | 17:52

An exploitable vulnerability exists in the smart cameras RTSP configuration of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The device incorrectly handles spaces in the URL field, leading to an arbitrary operating system command injection. An attacker can send a series of HTTP requests to trigger this vulnerability.

Vendor-Samsung

Product-sth-eth-250 sth-eth-250_firmware Samsung

CWE ID-CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CVE-2024-39930

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs