YAPIÔ¶³Ì´úÂëÖ´ÐÐ0 day©¶´

Ðû²¼Ê±¼ä 2021-07-09

0x00 ©¶´¸ÅÊö

CVE     ID


ʱ       ¼ä

2021-07-09

Àà       ÐÍ

RCE

µÈ      ¼¶

¸ßΣ

Ô¶³ÌÀûÓÃ

ÊÇ

Ó°Ï췶Χ

  ËùÓа汾

¹¥»÷ÅÓ´ó¶È


¿ÉÓÃÐÔ

¸ß

Óû§½»»¥


ËùÐèȨÏÞ


PoC/EXP


ÔÚÒ°ÀûÓÃ

ÊÇ

 

0x01 ©¶´ÏêÇé

image.png


YAPI ÊÇÒ»¸ö¸ßЧ¡¢Ò×Óᢹ¦Ð§Ç¿´óµÄAPI¹ÜÀíƽ̨£¬Ö¼ÔÚΪ¿ª·¢¡¢²úÎï¡¢²âÊÔÈËÔ±Ìṩ¸üÓÅÑŵĽӿڹÜÀí·þÎñ¡£

2021Äê7ÔÂ8ÈÕ£¬YAPI±»Åû¶´æÔÚÒ»¸öÔ¶³Ì´úÂëÖ´ÐÐ0 day©¶´¡£ÓÉÓÚmock½Å±¾×Ô½ç˵·þÎñ¶ÔJS½Å±¾¹ýÂ˲»ÑÏ£¬µ¼ÖÂÓû§¿ÉÒÔÌí¼ÓÇëÇó´¦Öýű¾£¬²¢Ôڽű¾ÖÐÖ²Èë¶ñÒâÃüÁ×îÖÕÔì³ÉÔ¶³ÌÃüÁîÖ´ÐС£Ä¿Ç°¸Ã©¶´Òѱ»½©Ê¬ÍøÂçºÍľÂí´ó¹æÄ£ÀûÓá£

 

0x02 ´¦Öý¨Òé

Ä¿Ç°´Ë©¶´ÔÝÎÞ²¹¶¡¡£½¨ÒéÆÚ´ý¹Ù·½Ðû²¼²¹¶¡£¬²¢Ó¦ÓÃÒÔÏ»º½â´ëÊ©£º

l  ¹Ø±ÕYAPIÓû§×¢²á¹¦Ð§ £»

l  ɾ³ýÒÑ×¢²áµÄ¶ñÒâÕË»§ £»

l  ɾ³ý¶ñÒâmock½Å±¾ £»

l  »Ø¹ö·þÎñÆ÷¿ìÕÕ¡£

ÏÂÔØÁ´½Ó£º

https://github.com/YMFE/yapi

 

0x03 ²Î¿¼Á´½Ó

https://github.com/YMFE/yapi/issues/2229

https://github.com/YMFE/yapi

https://s.tencent.com/research/report/76

 

0x04 ʱ¼äÏß

2021-07-08  ©¶´Åû¶

2021-07-09  VSRCÐû²¼Äþ¾²Í¨¸æ

0x05 ¸½Â¼

CVSSÆÀ·Ö³ß¶È¹ÙÍø£ºhttp://www.first.org/cvss/

image.png