telekom-security
diff --git a/‎_posts/2025-04-01-rasa-unauthenticated-rce-cve-2024-49375.md‎
Lines changed: 46 additions & 0 deletions b/‎_posts/2025-04-01-rasa-unauthenticated-rce-cve-2024-49375.md‎
Lines changed: 46 additions & 0 deletions
diff --git a/‎_sass/typography.scss‎
Lines changed: 1 addition & 1 deletion b/‎_sass/typography.scss‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎assets/advisories/Rasa_unauthenticated_RCE_CVE-2024-49375.pdf‎
641 KB b/‎assets/advisories/Rasa_unauthenticated_RCE_CVE-2024-49375.pdf‎
641 KB
@@ -0,0 +1,46 @@
+---
+title: Rasa (un)authenticated Remote Code Execution via remote model loading (CVE-2024-49375)
+header:  Rasa (un)authenticated Remote Code Execution via remote model loading (CVE-2024-49375)
+tags: ['advisories', 'writeup']
+cwes: ["CWE-94 (Improper Control of Generation of Code ('Code Injection'))", "CWE-502 (Deserialization of Untrusted Data)"]
+affected_product: 'rasa (pip) <3.6.21 and rasa-pro (pip) <3.10.12, <3.9.16, <3.8.18'
+vulnerability_release_date: '2025-01-14'
+---
+
+During an internal penetration test a product was checked which uses [Rasa](https://rasa.com/) to build a conversational AI. A mixture of penetration testing and source code analysis led to the discovery of an (un)authenticated Remote Code Execution.<!--more-->
+
+### TL;DR
+**Which versions are affected?**
+* rasa (pip) <3.6.21
+* rasa-pro (pip) <3.10.12, <3.9.16, <3.8.18
+
+**Are fixed versions available?**\
+Yes, namely:
+* rasa (pip) 3.6.21
+* rasa-pro (pip) 3.10.12, 3.9.16, 3.8.18
+
+**Does Rasa need to be patched?**\
+Yes and as fast as possible due to its severity (critical, 9.1/10, CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H). Additional information on the fix and the mitigation advice can be found at [GitHub](https://github.com/RasaHQ/rasa-pro-security-advisories/security/advisories/GHSA-cpv4-ggrr-7j9v).
+
+The RCE vulnerability affects systems running Rasa as follows:
+
+- Default configuration: not affected by RCE
+- [HTTP API enabled](https://rasa.com/docs/reference/api/pro/rasa-pro-rest-api/) (`--enable-api`): affected
+  - No authentication method in use: **unauthenticated RCE**
+  - Token Based Auth: **authenticated RCE**  
+  - JWT Based Auth: **authenticated RCE**
+
+**Is an exploit available?**\
+Yes, the exploit can be found at the end of the [full advisory](/assets/advisories/Rasa_unauthenticated_RCE_CVE-2024-49375.pdf) and [here](/assets/exploits/rasa/exploit.py).
+
+**Links:**\
+[https://github.com/RasaHQ/rasa-pro-security-advisories/security/advisories/GHSA-cpv4-ggrr-7j9v](https://github.com/RasaHQ/rasa-pro-security-advisories/security/advisories/GHSA-cpv4-ggrr-7j9v)\
+[https://nvd.nist.gov/vuln/detail/cve-2024-49375](https://nvd.nist.gov/vuln/detail/cve-2024-49375)
+
+**Credits**\
+Julian Scheid ([julian.scheid@telekom.de](mailto:julian.scheid@telekom.de))
+
+### Technical deep dive
+For those interested in taking a technical deep dive in how the vulnerability was discovered and how the exploit has been developed, reading the full advisory is highly recommended.
+
+[View the full advisory](/assets/advisories/Rasa_unauthenticated_RCE_CVE-2024-49375.pdf)
@@ -59,7 +59,7 @@ blockquote {
 p, ul, ol {
 	font-size: 1em; /* 18px */
 	line-height: 1.8em;
-	margin-bottom: 1.3334em; /* 24px/18px */
+	margin-bottom: 0.66em;
 }
 
 h1 {
Original file line number	Diff line number	Diff line change
`@@ -59,7 +59,7 @@ blockquote {`
`59`	`59`	`p, ul, ol {`
`60`	`60`	`font-size: 1em; /* 18px */`
`61`	`61`	`line-height: 1.8em;`
`62`		`- margin-bottom: 1.3334em; /* 24px/18px */`
	`62`	`+ margin-bottom: 0.66em;`
`63`	`63`	`}`
`64`	`64`
`65`	`65`	`h1 {`