#VU73175 Path traversal in AWS SDK for Java


Published: 2023-03-08

Vulnerability identifier: #VU73175

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-31159

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
AWS SDK for Java
Universal components / Libraries / Software for developers

Vendor: Amazon Web Services

Description

The vulnerability allows a remote user to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences within the downloadDirectory() method in in the AWS S3 TransferManager component. A remote user can send a specially crafted HTTP request and read arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

AWS SDK for Java: 1.12.1 - 1.12.260

External links
http://github.com/aws/aws-sdk-java/security/advisories/GHSA-c28r-hw5m-5gv3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Disconnected Log Collector
Multiple vulnerabilities in IBM Netcool Operations Insight
Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps
Path traversal in IBM QRadar SIEM
Path traversal in IBM Sterling B2B Integrator
Path traversal in IBM Process Mining
Path traversal in IBM Watson Discovery for IBM Cloud Pak for Data
Path traversal in IBM Storage Protect server
Path traversal in IBM Maximo Asset Management
Path traversal in IBM Maximo Manage application in IBM Maximo Application Suite