CVE-2023-25168

HIGH
Published Feb 9, 20233y ago · Modified Jun 17, 20261w ago
8.2 CVSS 3.1
High
Find Similar
Published Feb 9, 2023 3y ago
Last Modified Jun 17, 2026 1w ago

Description

Wings is Pterodactyl's server control plane. This vulnerability can be used to delete files and directories recursively on the host system. This vulnerability can be combined with `GHSA-p8r3-83r8-jwj5` to overwrite files on the host system. In order to use this exploit, an attacker must have an existing "server" allocated and controlled by Wings. This vulnerability has been resolved in version `v1.11.4` of Wings, and has been back-ported to the 1.7 release series in `v1.7.4`. Anyone running `v1.11.x` should upgrade to `v1.11.4` and anyone running `v1.7.x` should upgrade to `v1.7.4`. There are no known workarounds for this issue.

CVSS Details

Base Score
8.2
Exploitability
1.8
Impact
5.8
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H
Attack Vector Network
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Changed
Confidentiality None
Integrity High
Availability High

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-59

Affected Products 5

VendorProductVersionRange
pterodactylwings*≥1.7.0  –  <1.7.4
pterodactylwings1.11.0any
pterodactylwings1.11.1any
pterodactylwings1.11.2any
pterodactylwings1.11.3any

References 3

  • github.com https://github.com/pterodactyl/wings/commit/429ac62dba22997a278bc709df5ac00a5a25d83d
    PatchVendor Advisory
  • github.com https://github.com/pterodactyl/wings/security/advisories/GHSA-66p8-j459-rq63
    Vendor Advisory
  • github.com https://github.com/pterodactyl/wings/security/advisories/GHSA-p8r3-83r8-jwj5
    Vendor Advisory

Remediation

  • github.com https://github.com/pterodactyl/wings/commit/429ac62dba22997a278bc709df5ac00a5a25d83d
    PatchVendor Advisory