6.5

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2013-4489

GHSA ID

GHSA-95xq-v4m2-fq3r

EPSS Score

0.42732%

CWE

CWE-20

Published

5/17/2022

Updated

7/3/2023

KEV Status

Technology

Ruby

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2013-4489

CVE-2013-4489: GitLab Grit Gem for Ruby contains a flaw allowing arbitrary commands to be executed

The Grit gem for Ruby, as used in GitLab 5.2 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands, as demonstrated by the search box for the GitLab code search feature.

GitLab Grit Gem for Ruby contains a flaw in the app/contexts/search_context.rb script. The issue is triggered when input passed via the code search box is not properly sanitized, which allows strings to be evaluated by the shell. This may allow a remote attacker to execute arbitrary commands.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2013-4489

CVE-2013-4489:

6.5

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2013-4489

GHSA ID

GHSA-95xq-v4m2-fq3r

EPSS Score

0.42732%

CWE

CWE-20

Published

5/17/2022

Updated

7/3/2023

KEV Status

Technology

Ruby

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
gitlab-grit	rubygems	< 2.6.1	2.6.1

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from how the Grit::Repo#grep method in lib/grit/repo.rb called git.native(:grep) without the {pipeline: false} option prior to the patch. The commit diff shows the patched version explicitly adds pipeline: false to this call. In vulnerable versions, when user input containing pipe characters (|) was passed to the code search (which uses this grep method), the native command execution would interpret the pipe as a shell operator due to missing pipeline:false. The git.native function's pipeline handling in lib/grit/git.rb only executed shell pipelines when the pipeline option was enabled, but the grep method's lack of pipeline:false in vulnerable versions left this pathway open for exploitation via malicious input.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

6.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2013-4489: GitLab Grit Gem for Ruby contains a flaw allowing arbitrary commands to be executed

CVE-2013-4489:

6.5

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2013-4489: GitLab Grit Gem for Ruby contains a flaw allowing arbitrary commands to be executed

6.5

6.5

Basic Information

Basic Information

Technical Details

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI