Vulnerability Details CVE-2019-17526
An issue was discovered in SageMath Sage Cell Server through 2019-10-05. Python Code Injection can occur in the context of an internet facing web application. Malicious actors can execute arbitrary commands on the underlying operating system, as demonstrated by an __import__('os').popen('whoami').read() line. NOTE: the vendor's position is that the product is "vulnerable by design" and the current behavior will be retained
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://gist.github.com/barrett092/0380a1c34c014e29b827d1f408381525
- https://github.com/sagemath/sagecell/commits/master
- https://sethsec.blogspot.com/2016/11/exploiting-python-code-injection-in-web.html
- https://gist.github.com/barrett092/0380a1c34c014e29b827d1f408381525
- https://github.com/sagemath/sagecell/commits/master
- https://sethsec.blogspot.com/2016/11/exploiting-python-code-injection-in-web.html
Products affected by CVE-2019-17526
-
cpe:2.3:a:sagemath:sagemathcell:-