SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform

guest · Jun 25, 2019

SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform
Web analytics firm plugs a hole in its platform that allowed attackers to open a reverse shell that could be used to attack the service
June 25, 2019
https://threatpost.com/semrush-plugs-remote-code-execution-bug-in-its-saas-platform/146003/

Public disclosure of the vulnerability was Monday when details of the bug were shared by a white hat hacker who boasted he had earned a bounty of $10,000 for the discovery.

The RCE bug was tied to SEMrush’s Report Builder feature that allows users to generate custom web analytics reports using their own branding. The problem was how SEMrush handled logo images uploaded to the platform and the use of an unpatched version of ImageMagick, a web service used to process images.

While it’s unclear which ImageMagick bug is tied to SEMrush’s RCE vulnerability, one such RCE bug dates back to 2016 (CVE-2016-3714) and has a CVSS rating of 10.
Still unknown was how long this vulnerability existed, if it was exploited and what date exactly was it patched.
Click to expand...

Log in or Sign up

SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform

guest Guest

Log in or Sign up

SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform

guest Guest

Useful Searches