CVE-2019-10743

Опубликовано: 12 мая 2019

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

All versions of archiver allow attacker to perform a Zip Slip attack via the "unarchive" functions. It is exploited using a specially crafted zip archive, that holds path traversal filenames. When exploited, a filename in a malicious archive is concatenated to the target extraction directory, which results in the final path ending up outside of the target folder. For instance, a zip may hold a file with a "../../file.exe" location and thus break out of the target folder. If an executable or a configuration file is overwritten with a file containing malicious code, the problem can turn into an arbitrary code execution issue quite easily.

Затронутые пакеты

Платформа	Пакет	Состояние
OpenShift Service Mesh 2.0	servicemesh	Affected
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/cluster-curator-controller-rhel8	Not affected
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/clusterlifecycle-state-metrics-rhel8	Not affected
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/multicloud-manager-rhel8	Not affected
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/multiclusterhub-rhel8	Not affected
Red Hat Advanced Cluster Management for Kubernetes 2	rhacm2/openshift-hive-rhel8	Not affected
Red Hat Advanced Cluster Security 3	scanner	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-22

https://bugzilla.redhat.com/show_bug.cgi?id=1953848mholt/archiver: aribtrary file write via unsanitized destination filepaths

EPSS

Процентиль: 79%

0.01238

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2019-10743

CVSS3: 5.5

nvd

больше 6 лет назад

GHSA-h74j-692g-48mq

CVSS3: 5.5

github

больше 4 лет назад

Path Traversal in MHolt Archiver

EPSS

Процентиль: 79%

0.01238

Низкий

5.5 Medium

CVSS3