** DISPUTED ** An issue was discovered in Jinja2 2.10. The from_string function is prone to Server Side Template Injection (SSTI) where it takes the "source" parameter as a template object, renders it, and then returns it. The attacker can exploit it with {{INJECTION COMMANDS}} in a URI. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid because users shouldn't use untrusted templates without sandboxing.
References
Configurations
History
21 Nov 2024, 04:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00030.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00064.html - Mailing List, Third Party Advisory | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1677653 - Issue Tracking, Third Party Advisory | |
References | () https://bugzilla.suse.com/show_bug.cgi?id=1125815 - Issue Tracking, Third Party Advisory | |
References | () https://github.com/JameelNabbo/Jinja2-Code-execution - Broken Link | |
References | () https://www.exploit-db.com/exploits/46386/ - Exploit, Third Party Advisory, VDB Entry |
05 Apr 2022, 20:28
Type | Values Removed | Values Added |
---|---|---|
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00030.html - Mailing List, Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00064.html - Mailing List, Third Party Advisory | |
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1677653 - Issue Tracking, Third Party Advisory | |
References | (MISC) https://github.com/JameelNabbo/Jinja2-Code-execution - Broken Link | |
References | (CONFIRM) https://bugzilla.suse.com/show_bug.cgi?id=1125815 - Issue Tracking, Third Party Advisory | |
CPE | cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:* |
Information
Published : 2019-02-15 07:29
Updated : 2024-11-21 04:49
NVD link : CVE-2019-8341
Mitre link : CVE-2019-8341
CVE.ORG link : CVE-2019-8341
JSON object : View
Products Affected
pocoo
- jinja2
opensuse
- leap
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')