Main Vulnerability Database Vulnerabilities #VU72013

UNIX symbolic link following in grunt - CVE-2022-1537

Published: February 7, 2023

Vulnerability identifier: #VU72013

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-1537

CWE-ID: CWE-61

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
grunt

Software vendor:
gruntjs

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a symlink following issue. A local user can create a specially crafted symbolic link to the GruntJS user's .bashrc file and overwrite it with privileges of the application.

Successful exploitation of this vulnerability may result in privilege escalation.

Remediation

Install updates from vendor's website.

External links

https://huntr.dev/bounties/0179c3e5-bc02-4fc9-8491-a1a319b51b4d
https://github.com/gruntjs/grunt/commit/58016ffac5ed9338b63ecc2a63710f5027362bae

UNIX symbolic link following in grunt - CVE-2022-1537

Description

Remediation

External links

Please verify you're human