Platform
other
Component
allegra
Fixed in
7.5.1
CVE-2023-51646 is a Remote Code Execution (RCE) vulnerability discovered in Allegra, a data visualization and business intelligence platform. This flaw allows authenticated attackers to bypass authentication and execute arbitrary code on affected systems. The vulnerability impacts Allegra versions 7.5.0 build 29 and earlier, and a fix is available in version 7.5.1.
The primary impact of CVE-2023-51646 is the potential for remote code execution. An attacker who can authenticate to the Allegra system, even with a bypassed authentication mechanism, can upload malicious files and execute them on the server. This could lead to complete system compromise, data exfiltration, and disruption of services. The attacker gains the privileges of the LOCAL SERVICE account, which may have access to sensitive data and system resources. Successful exploitation could allow an attacker to install persistent backdoors, steal credentials, or pivot to other systems within the network.
CVE-2023-51646 was reported to ZDI (ZDI-CAN-22527) and subsequently published on 2024-11-22. The vulnerability's exploitation probability is considered medium due to the requirement for authentication, although the bypass described suggests ease of exploitation. Public proof-of-concept code is not currently available, but the vulnerability's nature makes it likely that such code will emerge. Monitor security advisories and threat intelligence feeds for updates.
Exploit Status
EPSS
0.54% (67% percentile)
CISA SSVC
CVSS Vector
The primary mitigation for CVE-2023-51646 is to upgrade Allegra to version 7.5.1 or later, which contains the fix for this vulnerability. If upgrading immediately is not possible, consider implementing temporary workarounds such as restricting file upload capabilities to trusted users and closely monitoring file uploads for suspicious activity. Review Allegra's access control lists to ensure only authorized users have upload privileges. Implement a Web Application Firewall (WAF) with rules to block attempts to upload files with suspicious extensions or paths. After upgrading, confirm the fix by attempting to upload a test file and verifying that the upload fails with an appropriate error message.
Actualice Allegra a la versión 7.5.1 o posterior. Esta versión corrige la vulnerabilidad de recorrido de directorios en el método uploadSimpleFile. La actualización impedirá la ejecución remota de código arbitrario.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2023-51646 is a Remote Code Execution vulnerability in Allegra, allowing attackers to execute code on affected systems by bypassing authentication.
You are affected if you are using Allegra versions 7.5.0 build 29 or earlier. Upgrade to 7.5.1 to mitigate the risk.
Upgrade Allegra to version 7.5.1 or later. As a temporary workaround, restrict file upload privileges and monitor upload activity.
While no active exploitation has been confirmed, the vulnerability's nature suggests it is likely to be targeted. Monitor security advisories and threat intelligence feeds.
Refer to the Allegra security advisory for CVE-2023-51646 on the official Allegra website or relevant security mailing lists.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.