CVE-2023-2479
published 2023-05-02CVE-2023-2479: OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
PriorityP273critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
22.01%
97.4th percentile
OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| appium | appium-desktop | < 1.22.3-4 | 1.22.3-4 |
| appium | appium-desktop | 0 – 1.14.1 | — |
| appium | appium_appium-desktop | >= unspecified < v1.22.3-4 | v1.22.3-4 |
Detection & IOCsextracted from sources · hover to see the quote
- →Exploit targets the `url` query parameter via HTTP GET request to the root path; inject OS commands through this parameter to trigger RCE. ↗
- →Vulnerable endpoint responds with HTTP 404 and Content-Type: application/json; match response body for the specific error string to confirm exploitability. ↗
- →Confirm out-of-band DNS interaction (OAST/interactsh) to validate blind OS command injection execution on the target. ↗
- →Response header must contain 'application/json' as part of multi-condition matching to confirm the vulnerable Appium Desktop Server endpoint. ↗
- ·Vulnerability affects only Appium Desktop versions prior to v1.22.3-4; patched in that release. ↗
- ·Exploitation requires no authentication (PR:N, UI:N per CVSS), making all network-exposed instances immediately at risk. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
appium-desktop OS Command Injection vulnerability
ghsa·2023-05-02
CVE-2023-2479 [CRITICAL] CWE-78 appium-desktop OS Command Injection vulnerability
appium-desktop OS Command Injection vulnerability
appium-desktop v1.14.1 and prior is vulnerable to OS Command Injection.
OSV
appium-desktop OS Command Injection vulnerability
osv·2023-05-02
CVE-2023-2479 [CRITICAL] appium-desktop OS Command Injection vulnerability
appium-desktop OS Command Injection vulnerability
appium-desktop v1.14.1 and prior is vulnerable to OS Command Injection.
No detection rules found.
Nuclei
Appium Desktop Server - Remote Code Execution
nuclei·CVSS 9.8
CVE-2023-2479 [CRITICAL] Appium Desktop Server - Remote Code Execution
Appium Desktop Server - Remote Code Execution
OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
Template:
id: CVE-2023-2479
info:
name: Appium Desktop Server - Remote Code Execution
author: zn9988
severity: critical
description: |
OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4.
impact: |
Unauthenticated attackers can exploit OS command injection through the url parameter to execute arbitrary system commands and completely compromise Appium Desktop Server installations.
remediation: Fixed in v1.22.3-4
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2023-2479
- https://huntr.dev/bounties/fbdeec3c-d197-4a68-a547-7f93fb9594b4/
- https://github.com/appium/appium-desktop/commit/12a988aa08b9822e97056a09486c9bebb3aad8fe
-
No writeups or analysis indexed.
https://github.com/appium/appium-desktop/commit/12a988aa08b9822e97056a09486c9bebb3aad8fehttps://huntr.dev/bounties/fbdeec3c-d197-4a68-a547-7f93fb9594b4https://github.com/appium/appium-desktop/commit/12a988aa08b9822e97056a09486c9bebb3aad8fehttps://huntr.dev/bounties/fbdeec3c-d197-4a68-a547-7f93fb9594b4
2023-05-02
Published