Mike Zhou

2 exploits Active since Dec 2023
CVE-2023-51387 WRITEUP HIGH WRITEUP
Hertzbeat <1.4.1 - Command Injection
Hertzbeat is an open source, real-time monitoring system. Hertzbeat uses aviatorscript to evaluate alert expressions. The alert expressions are supposed to be some simple expressions. However, due to improper sanitization for alert expressions in version prior to 1.4.1, a malicious user can use a crafted alert expression to execute any command on hertzbeat server. A malicious user who has access to alert define function can execute any command in hertzbeat instance. This issue is fixed in version 1.4.1.
CVSS 7.2
CVE-2023-51388 WRITEUP CRITICAL WRITEUP
Hertzbeat <1.4.1 - Code Injection
Hertzbeat is a real-time monitoring system. In `CalculateAlarm.java`, `AviatorEvaluator` is used to directly execute the expression function, and no security policy is configured, resulting in AviatorScript (which can execute any static method by default) script injection. Version 1.4.1 fixes this vulnerability.
CVSS 9.8