Path traversal in Broker

#VU28753 Path traversal in Broker

Published: 2020-06-05

Vulnerability identifier: #VU28753

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-7649

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Broker
Client/Desktop applications / Other client software

Vendor: Snyk Ltd.

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences. A remote authenticated attacker can send a specially crafted HTTP request and read arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Broker: 1.0.0 - 4.72.2

External links
http://snyk.io/vuln/SNYK-JS-SNYKBROKER-570608
http://github.com/snyk/broker/commit/90e0bac07a800b7c4c6646097c9c89d6b878b429
http://updates.snyk.io/snyk-broker-security-fixes-152338

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Path traversal in Snyk Broker