Smartrobot
CVE-2024-0552
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
2DescriptionCVE.org
Intumit inc. SmartRobot's web framwork has a remote code execution vulnerability. An unauthorized remote attacker can exploit this vulnerability to execute arbitrary commands on the remote server.
AnalysisAI
A remote code execution vulnerability exists in Intumit SmartRobot's web framework that allows unauthenticated attackers to execute arbitrary commands on the server without any user interaction. The vulnerability carries a critical CVSS score of 9.8 and is tagged as an RCE, though there is no indication of active exploitation in the wild (not in KEV) or public proof-of-concept availability. The Taiwan CERT has issued an advisory for this vulnerability affecting all versions of the SmartRobot platform.
Technical ContextAI
The vulnerability affects Intumit SmartRobot, identified by CPE cpe:2.3:a:intumit:smartrobot:*:*:*:*:*:*:*:* with the wildcard indicating all versions are impacted. The root cause is CWE-74 (Improper Neutralization of Special Elements in Output Used by a Downstream Component), which occurs when software constructs all or part of a command, data structure, or record using externally-influenced input without properly neutralizing special elements that could modify the intended command when sent to a downstream component. In web frameworks, this typically manifests as injection vulnerabilities where user input is passed unsanitized to system commands or interpreters.
RemediationAI
No patch or fixed version has been announced for this vulnerability. Organizations using Intumit SmartRobot should immediately implement network-level controls including placing the application behind a web application firewall (WAF) with rules to detect command injection attempts, restricting network access to trusted IP ranges only, and monitoring for suspicious command execution. Contact Intumit directly for patch availability and refer to the Taiwan CERT advisory at https://www.twcert.org.tw/tw/cp-132-7662-41d50-1.html for updates. Consider taking affected systems offline if they contain sensitive data until a patch is available.
More in Smartrobot
View allA critical authentication bypass vulnerability exists in Intumit SmartRobot due to the use of a hard-coded encryption ke
A Improper Control of Generation of Code ('Code Injection') vulnerability in groovy script function in SmartRobot′s Conv
SmartRobot from INTUMIT has a Server-Side Request Forgery vulnerability, allowing unauthenticated remote attackers to pr
SmartRobot by INTUMIT contains a reflected cross-site scripting (XSS) vulnerability in an insufficiently validated page
Share
External POC / Exploit Code
Leaving vuln.today