Vulnerability Description
Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution (RCE) by overwriting template engine configuration variables with view options received from The Express render API. **Note:** This is exploitable only for users who are rendering templates with user-defined data.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eta.Js | Eta | < 2.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/srcBroken Link
- https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/srcBroken Link
- https://github.com/eta-dev/eta/commit/5651392462ee0ff19d77c8481081a99e5b9138ddPatchThird Party Advisory
- https://security.snyk.io/vuln/SNYK-JS-ETA-2936803Third Party Advisory
- https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/srcBroken Link
- https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/srcBroken Link
- https://github.com/eta-dev/eta/commit/5651392462ee0ff19d77c8481081a99e5b9138ddPatchThird Party Advisory
- https://security.snyk.io/vuln/SNYK-JS-ETA-2936803Third Party Advisory
- https://security.snyk.io/vuln/SNYK-JS-ETA-2936803Third Party Advisory
FAQ
What is CVE-2022-25967?
CVE-2022-25967 is a vulnerability with a CVSS score of 8.1 (HIGH). Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution (RCE) by overwriting template engine configuration variables with view options received from The Express render API. *...
How severe is CVE-2022-25967?
CVE-2022-25967 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-25967?
Check the references section above for vendor advisories and patch information. Affected products include: Eta.Js Eta.