CVE-2022-4116
published 2022-11-22CVE-2022-4116: A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote…
PriorityP270critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
32.52%
98.1th percentile
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| quarkus | quarkus | < 2.13.5 | 2.13.5 |
| quarkus | quarkus | — | — |
| quarkus | quarkus | >= 2.14.0 < 2.14.2 | 2.14.2 |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability exists in the Quarkus Dev UI Config Editor endpoint, which is only active in development mode (Dev UI); monitor for unexpected HTTP requests targeting localhost Dev UI endpoints from external/cross-origin sources ↗
- →Attack vector is a drive-by localhost attack (cross-site request forgery style), meaning a malicious web page causes the victim's browser to issue requests to the locally running Quarkus Dev UI; detect anomalous cross-origin requests to localhost dev endpoints ↗
- ·This vulnerability only affects Quarkus applications running in development mode (Dev UI is not active in production builds); production deployments are not impacted ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Code injection in quarkus dev ui config editor
ghsa·2022-11-22
CVE-2022-4116 [CRITICAL] CWE-74 Code injection in quarkus dev ui config editor
Code injection in quarkus dev ui config editor
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
OSV
Code injection in quarkus dev ui config editor
osv·2022-11-22
CVE-2022-4116 [CRITICAL] Code injection in quarkus dev ui config editor
Code injection in quarkus dev ui config editor
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
Red Hat
quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE
vendor_redhat·2022-11-22·CVSS 9.8
CVE-2022-4116 [CRITICAL] CWE-94 quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE
quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
A vulnerability was found in quarkus. This issue occurs in Dev UI Config Editor, which is vulnerable to drive-by localhost attacks leading to remote code execution.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-11-22
Published