← back
CVE-2022-25967

CVE-2022-25967

CVSS 8.1 HIGHEPSS 2.0%CWE-94
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.1EPSS 2.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
30 Jan 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution (RCE) by overwriting template engine configuration variables with view options received from The Express render API. **Note:** This is exploitable only for users who are rendering templates with user-defined data.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P
Affected products
n/a · eta

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/src/compile-string.ts%23L21https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/src/file-handlers.ts%23L182https://github.com/eta-dev/eta/commit/5651392462ee0ff19d77c8481081a99e5b9138ddhttps://security.snyk.io/vuln/SNYK-JS-ETA-2936803