Studio 3T Remote Code Execution Vulnerability via Child_Process Module

A remote code execution vulnerability exists in Studio 3T versions through 2025.1.0. The issue arises in the IntelliShell component, where a crafted JavaScript payload can be sent to execute arbitrary operating system commands. This vulnerability exploits improper input handling in the child_process module, leading to unauthorized command execution on the host system.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server where Studio 3T is running. The executed commands run with the same privileges as the user executing them, potentially leading to unauthorized access or modification of files and directories.

Reproduction

To reproduce this vulnerability, connect to a MongoDB instance using Studio 3T. In the IntelliShell component, execute a JavaScript payload that utilizes the child_process module to run an operating system command, such as 'curl' to send a request to a local server.

Remediation

Users should upgrade to a version of Studio 3T that has addressed this vulnerability. If no such version is available, it is advisable to avoid using IntelliShell with untrusted MongoDB connections.