{"id":1241491,"date":"2024-07-16T20:11:03","date_gmt":"2024-07-16T22:11:03","guid":{"rendered":"https:\/\/teknomers.com\/fr\/la-cisa-met-en-garde-contre-une-faille-rce-activement-exploitee-dans-le-logiciel-geoserver-geotools\/"},"modified":"2024-07-16T20:11:07","modified_gmt":"2024-07-16T22:11:07","slug":"la-cisa-met-en-garde-contre-une-faille-rce-activement-exploitee-dans-le-logiciel-geoserver-geotools","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/la-cisa-met-en-garde-contre-une-faille-rce-activement-exploitee-dans-le-logiciel-geoserver-geotools\/","title":{"rendered":"La CISA met en garde contre une faille RCE activement exploit\u00e9e dans le logiciel GeoServer GeoTools"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">16 juillet 2024<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">R\u00e9daction<\/span><\/span><span class=\"p-tags\">Vuln\u00e9rabilit\u00e9 \/ S\u00e9curit\u00e9 des infrastructures<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/07\/La-CISA-met-en-garde-contre-une-faille-RCE-activement.png\" style=\"clear: left; display: block; float: left; text-align: center;\"><\/a><\/div>\n<p>L&#8217;Agence am\u00e9ricaine de cybers\u00e9curit\u00e9 et de s\u00e9curit\u00e9 des infrastructures (CISA) a annonc\u00e9 lundi <a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2024\/07\/15\/cisa-adds-one-known-exploited-vulnerability-catalog\" target=\"_blank\">ajout\u00e9e<\/a> une faille de s\u00e9curit\u00e9 critique affectant OSGeo GeoServer GeoTools en raison de ses vuln\u00e9rabilit\u00e9s exploit\u00e9es connues (<a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\">KEV<\/a>) catalogue, bas\u00e9 sur des preuves d&#8217;exploitation active.<\/p>\n<p>GeoServer est un <a rel=\"nofollow noopener\" href=\"https:\/\/github.com\/geoserver\/geoserver\" target=\"_blank\">logiciels open source<\/a> Serveur \u00e9crit en Java qui permet aux utilisateurs de partager et d&#8217;\u00e9diter des donn\u00e9es g\u00e9ospatiales. Il s&#8217;agit de l&#8217;impl\u00e9mentation de r\u00e9f\u00e9rence des standards Web Feature Service (WFS) et Web Coverage Service (WCS) de l&#8217;Open Geospatial Consortium (OGC).<\/p>\n<section class=\"dog_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/encrypted-drives-d\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/07\/Des-failles-critiques-non-corrigees-ont-ete-revelees-dans-le.gif\" width=\"727\" height=\"90\"\/><\/a><\/center><\/section>\n<p>La vuln\u00e9rabilit\u00e9, suivie comme <a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-36401\" target=\"_blank\">CVE-2024-36401<\/a> (Score CVSS\u00a0: 9,8), concerne un cas d&#8217;ex\u00e9cution de code \u00e0 distance qui pourrait \u00eatre d\u00e9clench\u00e9e par une entr\u00e9e sp\u00e9cialement con\u00e7ue.<\/p>\n<p>\u00ab Plusieurs param\u00e8tres de requ\u00eate OGC permettent l&#8217;ex\u00e9cution de code \u00e0 distance (RCE) par des utilisateurs non authentifi\u00e9s via une entr\u00e9e sp\u00e9cialement con\u00e7ue par rapport \u00e0 une installation GeoServer par d\u00e9faut en raison de l&#8217;\u00e9valuation non s\u00e9curis\u00e9e des noms de propri\u00e9t\u00e9 en tant qu&#8217;expressions XPath \u00bb, selon un <a rel=\"nofollow noopener\" href=\"https:\/\/github.com\/geoserver\/geoserver\/security\/advisories\/GHSA-6jj6-gm7p-fcvv\" target=\"_blank\">consultatif<\/a> publi\u00e9 par les mainteneurs du projet plus t\u00f4t ce mois-ci.<\/p>\n<p>La lacune a \u00e9t\u00e9 <a rel=\"nofollow noopener\" href=\"https:\/\/geoserver.org\/announcements\/vulnerability\/2024\/06\/18\/geoserver-2-25-2-released.html\" target=\"_blank\">adress\u00e9<\/a> dans les versions 2.23.6, 2.24.4 et 2.25.2. Le chercheur en s\u00e9curit\u00e9 Steve Ikeoka a \u00e9t\u00e9 cr\u00e9dit\u00e9 d&#8217;avoir signal\u00e9 la faille.<\/p>\n<p>On ne sait pas encore exactement comment la vuln\u00e9rabilit\u00e9 est exploit\u00e9e dans la nature. GeoServer a not\u00e9 que le probl\u00e8me est \u00ab confirm\u00e9 comme \u00e9tant exploitable via les requ\u00eates WFS GetFeature, WFS GetPropertyValue, WMS GetMap, WMS GetFeatureInfo, WMS GetLegendGraphic et WPS Execute \u00bb.<\/p>\n<p>Une autre faille critique a \u00e9galement \u00e9t\u00e9 corrig\u00e9e par les mainteneurs (<a rel=\"nofollow noopener\" href=\"https:\/\/github.com\/geotools\/geotools\/security\/advisories\/GHSA-w3pj-wh35-fq8w\" target=\"_blank\">CVE-2024-36404<\/a>score CVSS\u00a0: 9,8) qui pourrait \u00e9galement entra\u00eener une RCE \u00ab\u00a0si une application utilise certaines fonctionnalit\u00e9s de GeoTools pour \u00e9valuer les expressions XPath fournies par la saisie de l&#8217;utilisateur\u00a0\u00bb. Ce probl\u00e8me a \u00e9t\u00e9 r\u00e9solu dans les versions 29.6, 30.4 et 31.2.<\/p>\n<p>\u00c0 la lumi\u00e8re de l\u2019abus actif de CVE-2024-36401, les agences f\u00e9d\u00e9rales sont tenues d\u2019appliquer les correctifs fournis par le fournisseur d\u2019ici le 5 ao\u00fbt 2024.<\/p>\n<p>Cette \u00e9volution intervient alors que des rapports ont fait \u00e9tat de l&#8217;exploitation active d&#8217;une vuln\u00e9rabilit\u00e9 d&#8217;ex\u00e9cution de code \u00e0 distance dans la bo\u00eete \u00e0 outils de conversion de documents Ghostscript (<a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-29510\" target=\"_blank\">CVE-2024-29510<\/a>) qui pourrait \u00eatre utilis\u00e9 pour <a rel=\"nofollow noopener\" href=\"https:\/\/codeanlabs.com\/blog\/research\/cve-2024-29510-ghostscript-format-string-exploitation\/\" target=\"_blank\">\u00e9chapper au bac \u00e0 sable -dSAFER<\/a> et ex\u00e9cuter du code arbitraire.<\/p>\n<p>La vuln\u00e9rabilit\u00e9, corrig\u00e9e dans la version 10.03.1 suite \u00e0 une divulgation responsable par Codean Labs le 14 mars 2024, a depuis \u00e9t\u00e9 utilis\u00e9e comme arme pour obtenir un acc\u00e8s shell aux syst\u00e8mes vuln\u00e9rables, selon le d\u00e9veloppeur de ReadMe <a rel=\"nofollow noopener\" href=\"https:\/\/hachyderm.io\/@llimllib\/112722576578547410\" target=\"_blank\">Bill Mill<\/a>.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ? Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire davantage de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2024\/07\/cisa-warns-of-actively-exploited-rce.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80216 juillet 2024\ue804R\u00e9dactionVuln\u00e9rabilit\u00e9 \/ S\u00e9curit\u00e9 des infrastructures L&#8217;Agence am\u00e9ricaine de cybers\u00e9curit\u00e9 et de s\u00e9curit\u00e9 des infrastructures (CISA) a annonc\u00e9 lundi ajout\u00e9e une faille de s\u00e9curit\u00e9 critique affectant OSGeo GeoServer GeoTools en raison de ses vuln\u00e9rabilit\u00e9s exploit\u00e9es connues (KEV) catalogue, bas\u00e9 sur des preuves d&#8217;exploitation active. GeoServer est un logiciels open source Serveur \u00e9crit en Java [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1241492,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[4807,238714,200292,238582,240744,238778,4805,4168,841,4165,429,36372,9048,525,242097,242098,238584,6816,200271,4955,238334,98340,22778,238617,4172,4169,196,4166,238583],"class_list":["post-1241491","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-activement","tag-actualites-des-hackers","tag-actualites-sur-la-cybersecurite","tag-actualites-sur-la-cybersecurite-aujourdhui","tag-actualites-sur-le-cyberespace","tag-actualites-sur-le-piratage-informatique","tag-cisa","tag-comment-pirater","tag-contre","tag-cyber-attaques","tag-dans","tag-exploitee","tag-faille","tag-garde","tag-geoserver","tag-geotools","tag-les-nouvelles-des-hackers","tag-logiciel","tag-logiciel-malveillant-rancongiciel","tag-met","tag-mises-a-jour-cybernetiques","tag-mises-a-jour-de-cybersecurite","tag-rce","tag-securite-de-linformation","tag-securite-informatique","tag-securite-internet","tag-une","tag-violation-de-donnees","tag-vulnerabilite-du-logiciel"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1241491","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1241491"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1241491\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1241492"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1241491"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1241491"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1241491"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}