钉钉 RCE 漏洞

Created2022-02-16|Updated2025-08-31|WEB 漏洞复现和分析

钉钉 RCE 漏洞

影响版本

版本：6.3.5

https://dtapp-pub.dingtalk.com/dingtalk-desktop/win\_installer/Release/DingTalk\_v6.3.5.11308701.exe

触发方式

1	dingtalk://dingtalkclient/page/link?url=127.0.0.1/test.html&pc_slide=true

成功复现

POC

参考https://github.com/crazy0x70/dingtalk-RCE

修复方法

升级最新版 6.3.25

Author: Zeo

Link: https://zeo.plus/posts/%E9%92%89%E9%92%89%20RCE%20%E6%BC%8F%E6%B4%9E.html

Copyright Notice: All articles in this blog are licensed under CC BY-NC-SA 4.0 unless stating additionally.

安全 web安全