NShiftKey

• Potential command injection

  • Description : Attacker could use eval() method to execute arbitrary code
  • Countermeasure : The eval() method that could be exploited by an attacker should not be used within the script or should be used, the context should be checked for security.
    • Target Code : Accenture-kx.as.code/base-vm/build/jenkins/initial-setup/userContent/javascript/kx-core.js [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/jenkins/initial-setup/userContent/javascript/kx-core.js

      Lines 367 to 369 in 7e43696

      	command = baseCommand + ".id";
      	parentId = eval(command);
      	if (parentId.startsWith("formattedHtml_choice-parameter")) {

      
        
    • Target Code : Accenture-kx.as.code/client/backend/server.js [view change history] [ignore this]
      

      Accenture-kx.as.code/client/backend/server.js

      Lines 215 to 217 in 7e43696

      	if (data) {
      	data.content ? eval("(" + data.content.toString() + ")()") : "";
      	channel.ack(data);

      
        

• Information exposure

  • Description : If the encryption key is hardcoded in the source code, it can be leaked
  • Countermeasure : Do not hard-code important information in code, but encrypt and manage it in a safe place. For more information, see the link below: https://naver-security.github.io/nshiftkey-rule-guides/Secret_Hardcoded_eng
    • Target Code : Accenture-kx.as.code/auto-setup/cicd/gitlab/pre_install_scripts/createOAuth.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/cicd/gitlab/pre_install_scripts/createOAuth.sh

      Lines 33 to 35 in 7e43696

      	"identifier": "'${componentName}'",
      	"secret": "'${clientSecret}'",
      	"redirect_uri": "https://'${componentName}'.'${baseDomain}'/users/auth/openid_connect/callback"

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/functions/mattermostCreateUser.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/functions/mattermostCreateUser.sh

      Lines 18 to 20 in 7e43696

      	"first_name": "'${mattermostUser}'",
      	"password": "'${generateUserPassword}'"
      	}'

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/functions/mattermostGetLoginToken.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/functions/mattermostGetLoginToken.sh

      Lines 10 to 12 in 7e43696

      	# Get Login Token
      	curl -s -i -d '{"login_id":"'${mattermostUser}'@'${baseDomain}'","password":"'${mattermostPassword}'"}' https://mattermost.${baseDomain}/api/v4/users/login | grep 'token' | sed 's/token: //g' | sed "s/[^[:alnum:]-]//g"

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/monitoring/grafana/pre_install_scripts/getMattermostApplicationId.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/monitoring/grafana/pre_install_scripts/getMattermostApplicationId.sh

      Lines 4 to 6 in 7e43696

      	if [[ $(checkApplicationInstalled "mattermost" "collaboration") ]]; then
      	export mattermostLoginToken=$(curl -i -d '{"login_id":"admin@'${baseDomain}'","password":"'${vmPassword}'"}' ${chatopsUrl}/api/v4/users/login | grep 'token' | sed 's/token: //g')
      	export monitoringWebhookId=$(curl -s -H 'Authorization: Bearer '${mattermostLoginToken}'' -X GET ${chatopsUrl}/api/v4/hooks/incoming | jq -r '.[] | select(.display_name=="Monitoring") | .id')

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/monitoring/loki/post_install_scripts/configureLokiWithGrafana.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/monitoring/loki/post_install_scripts/configureLokiWithGrafana.sh

      Lines 14 to 16 in 7e43696

      	"url":"http://loki.${namespace}:3100",
      	"password":"",
      	"user":"",

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/monitoring/prometheus-stack/pre_install_scripts/getMattermostIntegrationId.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/monitoring/prometheus-stack/pre_install_scripts/getMattermostIntegrationId.sh

      Lines 2 to 4 in 7e43696

      	export mattermostLoginToken=$(curl -i -d '{"login_id":"admin@'${baseDomain}'","password":"'${vmPassword}'"}' ${chatopsUrl}/api/v4/users/login | grep 'token' | sed 's/token: //g')
      	export monitoringWebhookId=$(curl -s -H 'Authorization: Bearer '${mattermostLoginToken}'' -X GET ${chatopsUrl}/api/v4/hooks/incoming | jq -r '.[] | select(.display_name=="Monitoring") | .id')

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/monitoring/prometheus/pre_install_scripts/getMattermostIntegrationId.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/monitoring/prometheus/pre_install_scripts/getMattermostIntegrationId.sh

      Lines 2 to 4 in 7e43696

      	export mattermostLoginToken=$(curl -i -d '{"login_id":"admin@'${baseDomain}'","password":"'${vmPassword}'"}' ${chatopsUrl}/api/v4/users/login | grep 'token' | sed 's/token: //g')
      	export monitoringWebhookId=$(curl -s -H 'Authorization: Bearer '${mattermostLoginToken}'' -X GET ${chatopsUrl}/api/v4/hooks/incoming | jq -r '.[] | select(.display_name=="Monitoring") | .id')

      
        
    • Target Code : Accenture-kx.as.code/auto-setup/security/sysdig-falco/pre_install_scripts/getMattermostIntegrationId.sh [view change history] [ignore this]
      

      Accenture-kx.as.code/auto-setup/security/sysdig-falco/pre_install_scripts/getMattermostIntegrationId.sh

      Lines 2 to 4 in 7e43696

      	export mattermostLoginToken=$(curl -i -d '{"login_id":"admin@'${baseDomain}'","password":"'${vmPassword}'"}' ${chatopsUrl}/api/v4/users/login | grep 'token' | sed 's/token: //g')
      	export securityWebhookId=$(curl -s -H 'Authorization: Bearer '${mattermostLoginToken}'' -X GET ${chatopsUrl}/api/v4/hooks/incoming | jq -r '.[] | select(.display_name=="Security") | .id')

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-main-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-main-cloud-profiles.json

      Lines 73 to 75 in 7e43696

      	"username": "{{user `vsphere_username`}}",
      	"password": "{{user `vsphere_password`}}",
      	"insecure_connection": "true",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-main-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-main-cloud-profiles.json

      Lines 118 to 120 in 7e43696

      	"username": "{{user `openstack_user`}}",
      	"password": "{{user `openstack_password`}}",
      	"region": "{{user `openstack_region`}}",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-node-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-node-cloud-profiles.json

      Lines 75 to 77 in 7e43696

      	"username": "{{user `vsphere_username`}}",
      	"password": "{{user `vsphere_password`}}",
      	"insecure_connection": "true",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-node-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/darwin-linux/kx-node-cloud-profiles.json

      Lines 116 to 118 in 7e43696

      	"username": "{{user `openstack_user`}}",
      	"password": "{{user `openstack_password`}}",
      	"region": "{{user `openstack_region`}}",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-cloud-profiles.json

      Lines 75 to 77 in 7e43696

      	"username": "{{user `vsphere_username`}}",
      	"password": "{{user `vsphere_password`}}",
      	"insecure_connection": "true",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-cloud-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-cloud-profiles.json

      Lines 120 to 122 in 7e43696

      	"username": "admin",
      	"password": "jp6z6B8539OrtnqvjRu58Bm2MylLwR7z",
      	"region": "microstack",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-local-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/windows/kx-main-local-profiles.json

      Lines 159 to 161 in 7e43696

      	"username": "{{user `vsphere_username`}}",
      	"password": "{{user `vsphere_password`}}",
      	"insecure_connection": "true",

      
        
    • Target Code : Accenture-kx.as.code/base-vm/build/packer/windows/kx-node-local-profiles.json [view change history] [ignore this]
      

      Accenture-kx.as.code/base-vm/build/packer/windows/kx-node-local-profiles.json

      Lines 156 to 158 in 7e43696

      	"username": "{{user `vsphere_username`}}",
      	"password": "{{user `vsphere_password`}}",
      	"insecure_connection": "true",

      
        
    • Target Code : Accenture-kx.as.code/profiles/terraform-openstack/profile-config.json [view change history] [ignore this]
      

      Accenture-kx.as.code/profiles/terraform-openstack/profile-config.json

      Lines 15 to 17 in 7e43696

      	"tenant_name": "admin",
      	"password": "vJ6JuTWiGIIbdqkmKQ8R",
      	"region": "RegionOne",