CRITICAL🇵🇱 Wersja polska

CVE-2024-37273

CVSS 9.8v3.1pub. 2024-06-04upd. 2024-11-21

An arbitrary file upload vulnerability in the /v1/app/appendFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading a crafted file.

🤖 AI Analysis
How it works

The /v1/app/appendFileSync endpoint does not properly validate uploaded files, which classifies the vulnerability as CWE-434 (Unrestricted Upload of File with Dangerous Type) and CWE-94 (Code Injection). An attacker can upload a crafted file (e.g., an executable script or configuration file), which is then processed by the server in a way that enables execution of the code contained in it. The attack does not require any authentication or user interaction.

Impact

Successful exploitation of the vulnerability gives the attacker full control over the system — it is possible to execute arbitrary code with the privileges of the application process, which may lead to violations of data confidentiality, integrity, and availability.

Mitigation & patch

Apply patches available from the vendor according to the references and update the Jan application to a version newer than 0.4.12. Additionally, it is recommended to restrict network access to the Jan application API interfaces exclusively to trusted hosts (e.g., using a firewall or access control list).

Who is affected

Jan v0.4.12 (Homebrew Jan)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Homebrew Jan

    APP
    Homebrew
    0.4.12
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2024-36858CRITICAL9.8PL ✓ten sam produkt

Dowolne przesyłanie plików w Jan v0.4.12 prowadzące do RCE

CVE-2024-36857HIGH7.5ten sam produkt

Jan v0.4.12 was discovered to contain an arbitrary file read vulnerability via the /v1/app/readFileSync interf...