Summary
Backend plugin/script parsing used direct Python exec on user-provided script content, enabling remote code execution risk.
Severity
Critical
Affected Files
cmdb-api/api/lib/cmdb/auto_discovery/auto_discovery.py, cmdb-api/api/lib/cmdb/attribute.py
Recommended Remediation
Introduce restricted AST-based script validation/execution and replace direct exec paths.
Patch Branch
codex/sec-rce-restricted-script
Patch Commit
48448ee
Fork Branch URL
https://github.com/lhy8888/cmdb-security-fork/tree/codex/sec-rce-restricted-script
Summary
Backend plugin/script parsing used direct Python exec on user-provided script content, enabling remote code execution risk.
Severity
Critical
Affected Files
cmdb-api/api/lib/cmdb/auto_discovery/auto_discovery.py, cmdb-api/api/lib/cmdb/attribute.py
Recommended Remediation
Introduce restricted AST-based script validation/execution and replace direct exec paths.
Patch Branch
codex/sec-rce-restricted-script
Patch Commit
48448ee
Fork Branch URL
https://github.com/lhy8888/cmdb-security-fork/tree/codex/sec-rce-restricted-script