KnowAgent icon indicating copy to clipboard operation
KnowAgent copied to clipboard
verified publisher icon didi

KnowAgent is vulnerable to Information Disclosure, and it results to attackers can read arbitrary files.

Open gaogaostone opened this issue 2 years ago • 1 comments

  1. When I study the source code of KnowAgent, the file-content route in NormalLogCollectTaskController.java gets my attention. It seems to be a file read function. image 2)Then I access the route via http request. It is a vulnerability which leads to an arbitrary file reading. The request URL is http://116.85.4.122:9010/api/v1/normal/collect-task/file-content?hostName=127.0.0.1&path=/etc/passwd image

gaogaostone avatar Aug 31 '23 07:08 gaogaostone

谢谢宝贵的建议,这的确是个漏洞,我们将修复.

huqidong avatar Nov 18 '23 13:11 huqidong