1. What is this vulnerability and why does it matter?

This vulnerability, identified as CVE-2024-45186, is a server-side template injection (SSTI) flaw present in FileSender versions prior to 2.49. It is critical because it allows an attacker to retrieve sensitive credentials from the server, potentially leading to unauthorized access, privilege escalation, and full system compromise.

2. What are the CVSS score, severity level, and disclosure details?

The Common Vulnerability Scoring System (CVSS) score for this vulnerability is not provided in the given data. The vulnerability was published on October 2, 2024, at 00:00:00 UTC and last modified on October 2, 2024, at 14:04:49 UTC.

3. Which products, vendors, systems, and versions are affected?

The affected product is FileSender. Specifically, all versions of FileSender before version 2.49 are vulnerable to this server-side template injection flaw.

4. What is the technical root cause and attack vector?

The technical root cause of this vulnerability is a server-side template injection (SSTI). This occurs when user-supplied input is insecurely processed and rendered within server-side templates, allowing an attacker to inject and execute arbitrary template directives. The primary attack vector involves manipulating input fields or parameters that are subsequently used in template rendering, enabling the retrieval of credentials.

5. How can this vulnerability be exploited?

This vulnerability can be exploited by an attacker injecting malicious code or expressions into a template that is processed on the server-side. Through successful template injection, the attacker can execute arbitrary server-side code to access and exfiltrate sensitive data, particularly credentials. The specific method of injection would depend on how FileSender processes user-controlled data within its templates.

6. What mitigation steps and patches are available?

The primary mitigation step is to upgrade FileSender to version 2.49 or a later patched version. This update will contain the necessary fixes to address the server-side template injection vulnerability.

7. How can vulnerable systems be detected?

Vulnerable systems can be detected by checking the installed version of FileSender. Any deployment running a version of FileSender older than 2.49 is susceptible to this vulnerability. System administrators should verify their FileSender installations and compare the version number against the known patched version.

11. What is the risk assessment and urgency level?

The risk level for CVE-2024-45186 is assessed as high. The ability to retrieve credentials via server-side template injection poses a severe threat, as it can directly lead to unauthorized access, data breaches, and compromise of the underlying system. The urgency level is critical, and immediate action is required to patch affected systems to prevent potential exploitation and credential theft.