#VU80585 Path traversal in pyramid


Published: 2023-09-11

Vulnerability identifier: #VU80585

Vulnerability risk: Low

CVSSv3.1: 3.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-41105

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
pyramid
Web applications / CMS

Vendor: Pylons Project

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences. A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

pyramid: 2.0 - 2.0.1

External links
http://github.com/python/cpython/pull/107982
http://github.com/python/cpython/pull/107983
http://github.com/python/cpython/pull/107981
http://github.com/python/cpython/issues/106242
http://mail.python.org/archives/list/security-announce@python.org/thread/D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Netcool Operations Insight
Multiple vulnerabilities in IBM Cloud Pak for AIOps
Multiple vulnerabilities in Dell ECS
Multiple vulnerabilities in MySQL Workbench
Ubuntu update for python3.11
IBM Watson Discovery for IBM Cloud Pak for Data update for Pytho
Dell EMC Cloud Tiering Appliance update for third-party software
Red Hat Enterprise Linux 8 update for python3.11
Red Hat Enterprise Linux 9 update for python3.11
Multiple vulnerabilities in Oracle Linux