CVE-2023-37265
CRITICAL NUCLEICasaOS < 0.4.4 - Unauthenticated Remote Code Execution via IP Address Verification Bypass
Title source: llmExploitation Summary
CVE-2023-37265 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
CasaOS is an open-source Personal Cloud system. Due to a lack of IP address verification an unauthenticated attackers can execute arbitrary commands as `root` on CasaOS instances. The problem was addressed by improving the detection of client IP addresses in `391dd7f`. This patch is part of CasaOS 0.4.4. Users should upgrade to CasaOS 0.4.4. If they can't, they should temporarily restrict access to CasaOS to untrusted users, for instance by not exposing it publicly.
Nuclei Templates (1)
CasaOS < 0.4.4 - Authentication Bypass via Internal IP
CRITICALVERIFIEDby iamnoooob,DhiyaneshDK,pdresearch
Shodan:
http.html:"/CasaOS-UI/public/index.html" || http.html:"/casaos-ui/public/index.html"
FOFA:
body="/CasaOS-UI/public/index.html" || body="/casaos-ui/public/index.html"
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
https://github.com/IceWhaleTech/CasaOS-Gateway/security/advisories/GHSA-vjh7-5r6x-xh6g
Patch x_refsource_misc
https://github.com/IceWhaleTech/CasaOS-Gateway/commit/391dd7f0f239020c46bf057cfa25f82031fc15f7
Exploit, Third Party Advisory x_refsource_misc
https://www.sonarsource.com/blog/security-vulnerabilities-in-casaos
Scores
CVSS v3
9.8
EPSS
0.0636
EPSS Percentile
92.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-306
Status
published
Products (5)
icewhale/casaos
0.4.4 alpha1 (5 CPE variants)
icewhale/casaos
< 0.4.4
icewhale/casaos-gateway
0.4.4 alpha1
icewhale/casaos-gateway
< 0.4.4
IceWhaleTech/CasaOS-Gateway
0 - 0.4.4Go
Published
Jul 17, 2023
Tracked Since
Feb 18, 2026