Description

Shields.io is a service for concise, consistent, and legible badges in SVG and raster format. Shields.io and users self-hosting their own instance of shields using version < `server-2024-09-25` are vulnerable to a remote execution vulnerability via the JSONPath library used by the Dynamic JSON/Toml/Yaml badges. This vulnerability would allow any user with access to make a request to a URL on the instance to the ability to execute code by crafting a malicious JSONPath expression. All users who self-host an instance are vulnerable. This problem was fixed in server-2024-09-25. Those who follow the tagged releases should update to `server-2024-09-25` or later. Those who follow the rolling tag on DockerHub, `docker pull shieldsio/shields:next` to update to the latest version. As a workaround, blocking access to the endpoints `/badge/dynamic/json`, `/badge/dynamic/toml`, and `/badge/dynamic/yaml` (e.g: via a firewall or reverse proxy in front of your instance) would prevent the exploitable endpoints from being accessed.

INFO

Published Date :

2024-09-26T19:21:04.584Z

Last Modified :

2024-09-26T19:47:50.375Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-47180 vulnerability.

Vendors Products
Badges
  • Shields
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-47180.

URL Resource
https://github.com/badges/shields/commit/ec1b6c8daccda075403c1688ac02603f7aaa50b2 cve-icon cve-icon
https://github.com/badges/shields/issues/10553 cve-icon cve-icon
https://github.com/badges/shields/pull/10551 cve-icon cve-icon
https://github.com/badges/shields/security/advisories/GHSA-rxvx-x284-4445 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact