CVE-2024-22197: 
Nginx UI vulnerability analysis and mitigation

Nginx-ui, a server monitoring tool for CPU usage, memory usage, load average, and disk usage, contains a vulnerability identified as CVE-2024-22197. The vulnerability was discovered in the Home > Preference page functionality where certain nginx settings are exposed. While the UI restricts modification of settings like 'Nginx Access Log Path' and 'Nginx Error Log Path', the API additionally exposes 'test_config_cmd', 'reload_cmd', and 'restart_cmd' which can be modified through direct API requests. The issue was patched in version 2.0.0.beta.9 (GitHub Advisory).

The vulnerability stems from insufficient protection of sensitive configuration settings in the API endpoints. While the SaveSettings function is protected by authRequired middleware requiring a valid JWT token or X-Node-Secret, any authenticated user can modify these settings due to lack of proper authorization roles. The vulnerability has received a CVSS v3.1 base score of 8.8 (HIGH) from NIST with vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, and is classified as CWE-77 (Improper Neutralization of Special Elements used in a Command) (NVD).

The vulnerability can lead to authenticated Remote Code Execution, Privilege Escalation, and Information Disclosure. When exploited, an authenticated user can modify critical nginx settings through the API, potentially executing arbitrary commands on the system (GitHub Advisory).

The vulnerability has been patched in version 2.0.0.beta.9. The fix involves adding protected fields to settings to prevent unauthorized modifications. Users are advised to upgrade to the patched version to mitigate the vulnerability (GitHub Patch).