Description

Aperi'Solve is an open-source steganalysis web platform. Prior to 3.2.1, when uploading a JPEG, a user can specify an optional password to accompany the JPEG. This password is then directly passed into an expect command, which is then subsequently passed into a bash -c command, without any form of sanitization or validation. An unauthenticated attacker can achieve root-level RCE inside the worker container with a single HTTP request, enabling full read/write access to all user-uploaded images, analysis results, and plaintext steganography passwords stored on disk. Because the container shares a Docker network with PostgreSQL and Redis (no authentication on either), the attacker can pivot to dump the entire database or manipulate the job queue to poison results for other users. If Docker socket mounting or host volume mounts are present, this could escalate to full host compromise. This would also include defacement of the website itself. This vulnerability is fixed in 3.2.1.

INFO

Published Date :

2026-04-06T16:16:35.060Z

Last Modified :

2026-04-07T14:11:39.423Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-34977 vulnerability.

Vendors Products
Zeecka
  • Aperisolve
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-34977.

URL Resource
https://github.com/Zeecka/AperiSolve/commit/0193ca4a7d8ae9d6ba6cde82d37a6f94953463b4 cve-icon cve-icon
https://github.com/Zeecka/AperiSolve/pull/195 cve-icon cve-icon
https://github.com/Zeecka/AperiSolve/releases/tag/3.2.1 cve-icon cve-icon
https://github.com/Zeecka/AperiSolve/security/advisories/GHSA-8r22-62p7-9jrp cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability