GobyVuls/Yun-Box_authService_fastjson_serialization_code_execution_vulnerability.md

Yun-Box authService fastjson serialization code execution vulnerability

Vulnerability	Yun-Box authService fastjson serialization code execution vulnerability
Chinese name	云匣子 authService fastjson 序列化代码执行漏洞
CVSS core	9.8
FOFA Query (click to view the results directly)	(body="id=mTokenPlugin width=0 height=0 style=\"position: absolute;LEFT: 0px; TOP: 0px\"" && body="type=application/x-xtx-axhost") && (cert="Domain Control Validated" || cert="云匣子")
Number of assets affected	620
Description	Yun-Box is a secure management tool developed by Yunanbao for tenants to connect to cloud resources, which can help cloud tenants manage virtual machines, databases, and other resources on the cloud in a more secure and precise manner. With years of experience in operations and security, Yun-Box combines operations and security on the cloud to achieve pre-planned operations, in-process control, and post-audit. Additionally, Yun-Box integrates features such as automated operations, asset topology discovery, and account security to provide comprehensive and reliable cloud security management services.
Impact	Yun-Box uses the vulnerable fastjson component, and hackers can launch attacks on Yun-Box by exploiting the fastjson serialization vulnerability to gain server privileges.