CRITICAL🇵🇱 Wersja polska

CVE-2024-2056

CVSS 9.8v3.1pub. 2024-03-05upd. 2026-01-12

Services that are running and bound to the loopback interface on the Artica Proxy are accessible through the proxy service. In particular, the "tailon" service is running, running as the root user, is bound to the loopback interface, and is listening on TCP port 7050. Security issues associated with exposing this network service are documented at gvalkov's 'tailon' GitHub repo. Using the tailon service, the contents of any file on the Artica Proxy can be viewed.

🤖 AI Analysis
How it works

The 'tailon' service is running as root and listening on TCP port 7050 assigned to the loopback interface, which would normally restrict access to local processes only. However, the proxy mechanism in Artica Proxy incorrectly exposes loopback-associated services to remote clients, effectively bypassing this security control. The vulnerability is classified as CWE-288 (authentication bypass by alternative path) and CWE-552 (file access by external service). According to the documentation of the 'tailon' repository on GitHub, exposure of this service is associated with serious security issues.

Impact

An attacker without any authentication can read the contents of any file on the Artica Proxy device, including potentially files containing credentials, private keys, and other sensitive configuration information. Full root privileges of the 'tailon' service increase the risk of complete device takeover.

Mitigation & patch

Apply patches available from the manufacturer according to the references provided. Additionally, it is recommended to implement firewall rules blocking external access to TCP port 7050 and review proxy configuration for exposure of loopback services.

Who is affected

Articatech Artica Proxy — versions indicated in the manufacturer's references

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Articatech Artica Proxy

    APP
    Articatech
    4.50.000000
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-2054CRITICAL9.8PL ✓ten sam produkt

RCE przez deserializację PHP w Artica Proxy — nieuwierzytelniony dostęp

CVE-2024-2055CRITICAL9.8PL ✓ten sam produkt

Artica Proxy: brak uwierzytelnienia w funkcji Rich Filemanager (dostęp root)

CVE-2021-41739CRITICAL9.8ten sam produkt

A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can execute OS comm...

CVE-2020-13159CRITICAL9.8ten sam produkt

Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server dom...

CVE-2017-17055CRITICAL9.0ten sam produkt

Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a ...