zdh_web Arbitrary File Write Vulnerability Allowing Privilege Escalation or Remote Code Execution
Vulnerability
A vulnerability in zdh_web, a data management platform, allows authenticated users to upload files to the server's file system. This issue arises from inadequate validation of file upload paths, enabling users to overwrite existing files. The vulnerability is present in zdh_web versions through 5.6.17 and could lead to privilege escalation or remote code execution.
Impact
Exploitation of this vulnerability could result in unauthorized file uploads, overwriting of existing files, and potential privilege escalation or remote code execution.
Reproduction
The vulnerability can be reproduced by uploading a file through the application's file upload feature. The uploaded file can be directed to an arbitrary location on the server, potentially overwriting existing files. This can be done by manipulating the file path during the upload process, taking advantage of the application's insufficient path validation.
Remediation
Users are advised to upgrade to zdh_web version 5.6.18 or later, and to rebuild and redeploy their environments.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.