RULE(RULE ID:336835)

Rule General Information
Release Date: 2022-07-25
Rule Name: OctoBot WebInterface 0.4.3 Remote Code Execution Vulnerability (CVE-2021-36711)
Severity:
CVE ID:
Rule Protection Details
Description: WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled.
Impact: An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.
Affected OS: Windows, Linux, Others
Reference: http://packetstormsecurity.com/files/167780/OctoBot-WebInterface-0.4.3-Remote-Code-Execution.html
https://github.com/Drakkar-Software/OctoBot/blob/master/CHANGELOG.md
https://github.com/Drakkar-Software/OctoBot/issues/1966
https://github.com/Nwqda/Sashimi-Evil-OctoBot-Tentacle
Solutions
The vendor has released upgrade patches to fix vulnerabilities, please visit:
https://github.com/Drakkar-Software/OctoBot