{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T20:23:04.871","vulnerabilities":[{"cve":{"id":"CVE-2023-38702","sourceIdentifier":"security-advisories@github.com","published":"2023-08-04T19:15:10.080","lastModified":"2024-11-21T08:14:05.280","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Knowage is an open source analytics and business intelligence suite. Starting in the 6.x.x branch and prior to version 8.1.8, the endpoint `/knowage/restful-services/dossier/importTemplateFile` allows authenticated users to upload `template file` on the server, but does not need any authorization to be reached. When the JSP file is uploaded, the attacker just needs to connect to `/knowageqbeengine/foo.jsp` to gain code execution on the server. By exploiting this vulnerability, an attacker with low privileges can upload a JSP file to the `knowageqbeengine` directory and gain code execution capability on the server. This issue has been patched in Knowage version 8.1.8."},{"lang":"es","value":"Knowage es una suite de análisis e inteligencia de negocio de código abierto. A partir de la rama 6.x.x y antes de la versión 8.1.8, el endpoint `/knowage/restful-services/dossier/importTemplateFile` permite a los usuarios autenticados subir `template file` al servidor, pero no necesita ninguna autorización para ser alcanzado. Cuando se carga el archivo JSP, el atacante sólo necesita conectarse a `/knowageqbeengine/foo.jsp` para obtener la ejecución de código en el servidor. Aprovechando esta vulnerabilidad, un atacante con privilegios bajos puede cargar un archivo JSP en el directorio `knowageqbeengine` y obtener la capacidad de ejecutar código en el servidor. Este problema ha sido parcheado en la versión 8.1.8 de Knowage.\n"}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:eng:knowage:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.0","versionEndExcluding":"8.1.8","matchCriteriaId":"97741C80-7124-493C-B642-25BC547AA137"}]}]}],"references":[{"url":"https://github.com/KnowageLabs/Knowage-Server/security/advisories/GHSA-7mjh-73q3-c3fc","source":"security-advisories@github.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/KnowageLabs/Knowage-Server/security/advisories/GHSA-7mjh-73q3-c3fc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}