What is the severity of CVE-2024-21545?

CVE-2024-21545 is considered a critical vulnerability due to the potential for authenticated attackers to download arbitrary host files.

How do I fix CVE-2024-21545?

To mitigate CVE-2024-21545, ensure that access privileges are tightly controlled and consider implementing additional validation for API responses.

Who is affected by CVE-2024-21545?

CVE-2024-21545 affects users of Proxmox Virtual Environment with 'Sys.Audit' or 'VM.Monitor' privileges.

What kind of attacks can exploit CVE-2024-21545?

Exploiting CVE-2024-21545 allows authenticated attackers to download sensitive files from the host system via the API.

What are the potential impacts of CVE-2024-21545?

The potential impacts of CVE-2024-21545 include unauthorized access to sensitive data and possible disruption of services.

Vulnerability/
CVE-2024-21545

high

8.2

CWE

24/9/2024

26/9/2024

CVE-2024-21545

First published: Tue Sep 24 2024(Updated: )

Proxmox Virtual Environment is an open-source server management platform for enterprise virtualization. Insufficient safeguards against malicious API response values allow authenticated attackers with 'Sys.Audit' or 'VM.Monitor' privileges to download arbitrary host files via the API. When handling the result from a request handler before returning it to the user, the handle_api2_request function will check for the ‘download’ or ‘data’->’download’ objects inside the request handler call response object. If present, handle_api2_request will read a local file defined by this object and return it to the user. Two endpoints were identified which can control the object returned by a request handler sufficiently that the ’download’ object is defined and user controlled. This results in arbitrary file read. The privileges of this file read can result in full compromise of the system by various impacts such as disclosing sensitive files allowing for privileged session forgery.

Credit: report@snyk.io

Affected Software	Affected Version	How to fix
Proxmox VE

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-21545?
CVE-2024-21545 is considered a critical vulnerability due to the potential for authenticated attackers to download arbitrary host files.
How do I fix CVE-2024-21545?
To mitigate CVE-2024-21545, ensure that access privileges are tightly controlled and consider implementing additional validation for API responses.
Who is affected by CVE-2024-21545?
CVE-2024-21545 affects users of Proxmox Virtual Environment with 'Sys.Audit' or 'VM.Monitor' privileges.
What kind of attacks can exploit CVE-2024-21545?
Exploiting CVE-2024-21545 allows authenticated attackers to download sensitive files from the host system via the API.
What are the potential impacts of CVE-2024-21545?
The potential impacts of CVE-2024-21545 include unauthorized access to sensitive data and possible disruption of services.

agent/weakness
agent/references
agent/type
agent/first-publish-date
agent/description
agent/author
agent/severity
agent/event
collector/nvd-api
source/NVD
agent/last-modified-date
collector/mitre-cve
source/MITRE
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/proxmox
canonical/proxmox ve

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.