免费扫描

此页面尚未翻译为您的语言。我们正在努力翻译,目前显示英文内容。

💡 Keep dependencies up to date — most exploits target known, patchable vulnerabilities.

HIGHCVE-2026-45229CVSS 8.8

CVE-2026-45229: Mass Assignment in Quark Drive

平台

nodejs

组件

quark-auto-save

修复版本

0.8.5

在NVD查看
保存
正在翻译为您的语言…

CVE-2026-45229 describes a mass assignment vulnerability discovered in Quark Drive. This flaw allows authenticated attackers to manipulate administrator credentials by exploiting insufficient input validation within the /update endpoint. The vulnerability impacts versions prior to 0.8.5 and can result in unauthorized access and control over the system. A patch is available in version 0.8.5.

影响与攻击场景翻译中…

The core impact of CVE-2026-45229 lies in the ability for an attacker to permanently compromise administrator accounts. By crafting a malicious POST request to the /update endpoint, an attacker can overwrite the stored login credentials. This effectively locks out legitimate administrators and grants the attacker persistent, unauthorized access to the entire Quark Drive instance. This access extends to all configured tasks, cloud tokens, and notification services, potentially enabling widespread disruption and data exfiltration. The vulnerability's reliance on authentication means an attacker must first gain a valid login, but once achieved, the impact is severe and long-lasting.

利用背景翻译中…

CVE-2026-45229 was published on 2026-05-13. Its severity is rated HIGH with a CVSS score of 8.8. There are currently no publicly known Proof-of-Concept (POC) exploits. The vulnerability is not listed on KEV or EPSS, suggesting a low to medium probability of active exploitation at this time. Monitor vendor advisories and security mailing lists for updates.

威胁情报

漏洞利用状态

概念验证未知
CISA KEVNO
互联网暴露
报告1 份威胁报告

CVSS 向量

威胁情报· CVSS 3.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H8.8HIGHAttack VectorNetwork攻击者如何到达目标Attack ComplexityLow利用漏洞所需的条件Privileges RequiredLow攻击所需的认证级别User InteractionNone是否需要受害者采取行动ScopeUnchanged超出受影响组件的影响范围ConfidentialityHigh敏感数据泄露风险IntegrityHigh数据未授权篡改风险AvailabilityHigh服务中断风险nextguardhq.com · CVSS v3.1 基础分数
这些指标意味着什么?
Attack Vector
网络 — 可通过互联网远程利用,无需物理或本地访问。攻击面最大。
Attack Complexity
低 — 无需特殊条件,可以稳定地利用漏洞。
Privileges Required
低 — 任何有效用户账户均可。
User Interaction
无 — 攻击自动且无声,受害者无需任何操作。
Scope
未改变 — 影响仅限于脆弱组件本身。
Confidentiality
高 — 完全丧失机密性,攻击者可读取所有数据。
Integrity
高 — 攻击者可写入、修改或删除任何数据。
Availability
高 — 完全崩溃或资源耗尽,完全拒绝服务。

受影响的软件

组件quark-auto-save
供应商Cp0204
最低版本0.0.0
最高版本ea8377a596446291953dbe36e2d119d85bcd865b
修复版本0.8.5

弱点分类 (CWE)

CWE-915

时间线

  1. 已保留
  2. 发布日期

缓解措施和替代方案翻译中…

The primary mitigation for CVE-2026-45229 is to immediately upgrade Quark Drive to version 0.8.5 or later. If an upgrade is not immediately feasible, consider implementing a Web Application Firewall (WAF) rule to block POST requests to the /update endpoint containing arbitrary webui objects within the config_data dictionary. Alternatively, restrict access to the /update endpoint to trusted networks or users. Carefully review and validate all input received by the /update endpoint to prevent future mass assignment vulnerabilities. After upgrading, confirm the fix by attempting to modify administrator credentials via the /update endpoint with a crafted payload; the request should be rejected.

修复方法翻译中…

Actualice Quark Drive a la versión 0.8.5 o superior para mitigar la vulnerabilidad de asignación masiva. Esta actualización corrige la falta de filtrado adecuado en la lista de denegación, previniendo que atacantes puedan sobrescribir las credenciales del administrador.

常见问题翻译中…

What is CVE-2026-45229 — mass assignment in Quark Drive?

CVE-2026-45229 is a HIGH severity vulnerability in Quark Drive allowing authenticated attackers to overwrite administrator credentials via the /update endpoint, leading to persistent access and control.

Am I affected by CVE-2026-45229 in Quark Drive?

You are affected if you are running Quark Drive versions 0.0.0–ea8377a596446291953dbe36e2d119d85bcd865b and have not upgraded to version 0.8.5.

How do I fix CVE-2026-45229 in Quark Drive?

Upgrade Quark Drive to version 0.8.5 or later. As a temporary workaround, implement a WAF rule to block malicious POST requests to the /update endpoint.

Is CVE-2026-45229 being actively exploited?

Currently, there are no publicly known Proof-of-Concept exploits or reports of active exploitation, but vigilance is advised.

Where can I find the official Quark Drive advisory for CVE-2026-45229?

Refer to the Quark Drive official website and security advisories for the latest information and updates regarding CVE-2026-45229.

你的项目受影响吗?

上传你的依赖文件,立即了解此CVE和其他CVE是否影响你。

免费扫描搜索 CVE
live免费扫描

立即试用 — 无需账户

上传任何清单文件 (composer.lock, package-lock.json, WordPress 插件列表…) 或粘贴您的组件列表。您立即获得一份漏洞报告。上传文件只是开始:拥有账户后,您将获得持续监控、Slack/电子邮件警报、多项目和白标报告。

手动扫描Slack/邮件提醒持续监控白标报告

拖放您的依赖文件

composer.lock、package-lock.json、requirements.txt、Gemfile.lock、pubspec.lock、Dockerfile...