CVE-2023-34105

Published: Jun 12, 2023

Modified: Jan 3, 2025

PUBLISHED

CVSS v3.1

7.5

HIGH

Description

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's `api-server` server is vulnerable to a drive-by command injection. An attacker may send a request to the `/api/v1/snapshots` endpoint containing any commands to be executed as part of the body of the POST request. This issue may lead to Remote Code Execution (RCE). Versions 5.0.157, 5.0-b1, and 6.0.48 contain a fix.

Vendor	Product	Versions
ossrs	srs	affected `>= 5.0.137, < 5.0.157` affected `>= 6.0.18, < 6.0.48` affected `< 5.0-b1`

Weaknesses (CWE)

CWE-78

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/ossrs/srs/security/advisories/GHSA-vpr5-779c-cx62

x_refsource_CONFIRM

https://github.com/ossrs/srs/commit/1d878c2daaf913ad01c6d0bc2f247116c8050338

x_refsource_MISC

https://github.com/ossrs/srs/blob/1d11d02e4b82fc3f37e4b048cff483b1581482c1/trunk/research/api-server/server.go#L761

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-34105

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References