CRITICAL🇵🇱 Wersja polska

CVE-2024-28212

CVSS 9.8v3.1pub. 2024-03-07upd. 2025-05-07

nGrinder before 3.5.9 uses old version of SnakeYAML, which could allow remote attacker to execute arbitrary code via unsafe deserialization.

🤖 AI Analysis
How it works

The vulnerability stems from the use of an outdated version of the SnakeYAML library, which does not properly secure the YAML data deserialization process. An attacker can submit a specially crafted YAML payload that, when processed by the application, leads to the execution of malicious code. The attack vector is network-based, requires no authentication or user interaction, making the vulnerability particularly serious.

Impact

An attacker can remotely execute arbitrary code (RCE) on the server running nGrinder with application privileges, leading to complete compromise of system confidentiality, integrity, and availability.

Mitigation & patch

Update nGrinder to version 3.5.9 or later, which includes an updated version of the SnakeYAML library that eliminates the unsafe deserialization vulnerability.

Who is affected

Naver nGrinder in versions before 3.5.9

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Naver Ngrinder

    APP
    Naver
    < 3.5.9
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDeserialization
CWE
References

Related vulnerabilities

CVE-2024-28211CRITICAL9.8PL ✓ten sam produkt

Naver nGrinder — RCE przez złośliwy serwer JMX/RMI

CVE-2024-28213CRITICAL9.8PL ✓ten sam produkt

RCE przez niebezpieczną deserializację obiektów Java w Naver nGrinder

CVE-2024-28215HIGH7.5ten sam produkt

nGrinder before 3.5.9 allows an attacker to create or update webhook configuration due to lack of access contr...

CVE-2024-28216MEDIUM5.4ten sam produkt

nGrinder before 3.5.9 allows an attacker to obtain the results of webhook requests due to lack of access contr...

CVE-2016-5060MEDIUM6.1ten sam produkt

Multiple cross-site scripting (XSS) vulnerabilities in nGrinder before 3.4 allow remote attackers to inject ar...