CVE-2024-51748: 
Linux Debian vulnerability analysis and mitigation

CVE-2024-51748 affects Kanboard, a project management software focused on the Kanban methodology. The vulnerability was discovered by Deutsche Telekom Security GmbH and disclosed on November 11, 2024. It allows an authenticated Kanboard administrator to execute arbitrary PHP code on the server through manipulation of language settings. This vulnerability affects all versions of Kanboard prior to version 1.2.42 (GitHub Advisory).

The vulnerability stems from improper handling of the application_language setting in the settings table. An attacker with administrative privileges can upload a modified sqlite.db file through a dedicated feature, gaining control over the filepath that gets loaded. The vulnerability has been assigned a CVSS v3.1 base score of 9.1 (Critical) with the vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H, indicating high impact on confidentiality, integrity, and availability (NVD, Security Online).

If successfully exploited, this vulnerability allows attackers to execute arbitrary PHP code on the server, potentially leading to complete system compromise. The attack requires the attacker to have administrative privileges and the ability to place a malicious translations.php file on the system, which can be achieved through various means such as anonymous FTP servers or other file upload vulnerabilities (GitHub Advisory).

The vulnerability has been patched in Kanboard version 1.2.42. The fix includes proper sanitization of the applicationlanguage parameter when loading from the database, implementing regex validation like [a-zA-Z\]+. Users are strongly advised to upgrade to version 1.2.42 or later (GitHub Advisory).