Newforma Info Exchange (NIX) Arbitrary File Read and Delete Vulnerability

A vulnerability in Newforma Info Exchange (NIX) prior to version 2023.1 allows authenticated users to read and delete arbitrary files with 'NT AUTHORITY\NetworkService' privileges. This is achieved by sending requests to '/UserWeb/Common/MarkupServices.ashx' with the 'DownloadExportedPDF' command. The vulnerability is exacerbated by the fact that, in versions prior to 2023.1, anonymous access is enabled by default, allowing unauthenticated attackers to exploit this file manipulation flaw.

Impact

Exploitation of this vulnerability could lead to unauthorized reading and deletion of files with elevated privileges, potentially allowing for sensitive information disclosure or disruption of critical services.

Remediation

Users can upgrade to Newforma Info Exchange version 2023.1 or later to address this vulnerability. For those using Newforma Project Center, similar guidance applies.