MatterAI Axon Code OS Command Injection Vulnerability Allowing Remote Code Execution
Vulnerability
A command injection vulnerability has been identified in the Axon Code application by MatterAI, specifically in versions through 4.123.1. This vulnerability arises from the misuse of a command parser intended for Unix systems, which fails to properly interpret Windows CMD escape sequences. As a result, attackers can craft payloads that exploit this parsing error, bypassing the application's Git command whitelist and leading to arbitrary remote code execution.
Impact
Exploitation of this vulnerability allows for arbitrary remote code execution on the affected system.
Reproduction
To reproduce this vulnerability, use Axon Code version 4.123.1 or earlier on a Windows platform. The vulnerability can be triggered by sending a command that includes escaped characters, such as git log followed by an escaped quote and a malicious command, using the caret (^) as an escape character. The Axon Code parser will misinterpret the command, leading to the execution of the malicious payload on the system.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.