CVE-2021-30005-POC

PoC for CVE-2021-30005.

Details

The vulnerability resides in the fact that PyCharm would automatically activate a virtual environment found in the project when opened for the first time. This allowed an attacker to create a repository containing a malicious virtual environment with arbitrary commands in the activation scripts (e.g. venv/bin/activate), that would get executed when downloaded and opened in PyCharm.

The injected command can be found here.

To reproduce

Clone the repo:

git clone https://github.com/atorralba/CVE-2021-30005-POC

And open it in a vulnerable version of PyCharm (before 2020.3.4).

More information about the fix

See Trusted Projects in https://blog.jetbrains.com/pycharm/2021/03/pycharm-2020-3-4-is-out/

References

Inspired by: https://blog.doyensec.com/2020/03/16/vscode_codeexec.html
JetBrains security bulletin: https://blog.jetbrains.com/blog/2021/05/07/jetbrains-security-bulletin-q1-2021/

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
venv		venv
README.md		README.md
test.py		test.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

venv

venv

README.md

README.md

test.py

test.py

Repository files navigation

CVE-2021-30005-POC

Details

To reproduce

More information about the fix

References

About

Releases

Packages

Languages

atorralba/CVE-2021-30005-POC

Folders and files

Latest commit

History

Repository files navigation

CVE-2021-30005-POC

Details

To reproduce

More information about the fix

References

About

Resources

Stars

Watchers

Forks

Languages