A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 allows a remote attacker to execute arbitrary code via the path parameter.
The vulnerability results from insufficient validation of the path parameter passed to the application, which corresponds to the CWE-94 category (code injection). An attacker can craft an appropriate network request by injecting malicious code through this parameter. The lack of authentication and low attack complexity make it possible for any person with network access to the service to execute the exploit.
Successful exploitation of this vulnerability allows an attacker to execute arbitrary code in the context of the application process, which may lead to complete server takeover, data theft, backdoor installation, or further lateral movement in the network.
Apply patches available from the vendor according to references. It is recommended to monitor the vendor's repositories (Gitee/GitHub) at https://gitee.com/olajowon/loggrove/ for information about available updates. Until the patch is implemented, consider restricting access to the service only to trusted IP addresses using a firewall.
Loggrove v.1.0 (vendor: Olajowon)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HOlajowon Loggrove
APPOlajowon1.0