CVE-2025-0655 - Vulnerability Details

A vulnerability in man-group/dtale versions 3.15.1 allows an attacker to override global state settings to enable the `enable_custom_filters` feature, which is typically restricted to trusted environments. Once enabled, the attacker can exploit the /test-filter endpoint to execute arbitrary system commands, leading to remote code execution (RCE). This issue is addressed in version 3.16.1.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable yes

Technical Impact total

No data.

References

Link	Providers
https://github.com/man-group/dtale/commit/1e26ed3ca12fe83812b90f12a2b3e5fb0b740f7a
https://huntr.com/bounties/f63af7bd-5438-4b36-a39b-4c90466cff13

History

Tue, 15 Apr 2025 16:45:00 +0000

Type	Values Removed	Values Added
CPEs	cpe:2.3:a:man:d-tale:3.15.1:::::::*
Vendors & Products	Man Man d-tale
Metrics	cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Fri, 04 Apr 2025 09:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-77

Tue, 01 Apr 2025 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Man Man d-tale
Weaknesses		CWE-78
CPEs		cpe:2.3:a:man:d-tale:3.15.1:::::::*
Vendors & Products		Man Man d-tale
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Thu, 20 Mar 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 20 Mar 2025 10:15:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in man-group/dtale versions 3.15.1 allows an attacker to override global state settings to enable the `enable_custom_filters` feature, which is typically restricted to trusted environments. Once enabled, the attacker can exploit the /test-filter endpoint to execute arbitrary system commands, leading to remote code execution (RCE). This issue is addressed in version 3.16.1.
Title		Remote Code Execution via Global State Override in man-group/dtale
Weaknesses		CWE-77
References		https://github.com/man-group/dtale/commit/1e26ed3ca12fe83812b90f12a2b3e5fb0b740f7a https://huntr.com/bounties/f63af7bd-5438-4b36-a39b-4c90466cff13
Metrics		cvssV3_0 `{'score': 9.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: REJECTED

Assigner: @huntr_ai

Published: 2025-03-20T10:11:12.681Z

Updated: 2025-04-15T15:57:29.661Z

Reserved: 2025-01-22T18:15:59.356Z

Link: CVE-2025-0655

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2025-03-20T10:15:53.533

Modified: 2025-04-15T16:15:56.733

Link: CVE-2025-0655

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object