Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-26150

Опубликовано: 23 фев. 2024
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

@backstage/backend-common is a common functionality library for backends for Backstage, an open platform for building developer portals. In @backstage/backend-common prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the resolveSafeChildPath utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in @backstage/backend-common versions 0.21.1, 0.20.2, and 0.19.10.

A flaw was found in the backstage/backend-common package. Path checks with the "resolveSafeChildPath" utility were not exhaustive enough, leading to the risk of a path traversal vulnerability if symlinks are injected by attackers.

Отчет

RHDH actions do not use symlinks and would not be exposed. There is a small chance that customers can use 3rd party software templates that use symlinks but it's a low risk and to our knowledge, none of our customers are going into production with 1.0. If they had intentions to, we would advise them to use 1.1 which is patched already. Since 1.0 is in maintenance mode, our decision is aligned with our lifecycle policy to only backport critical and important CVEs. So marking as would not fix.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Developer Hubrhdh-operator-containerNot affected
Red Hat Developer Hubrhdh/rhdh-hub-rhel9Will not fix

Показывать по

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-22
https://bugzilla.redhat.com/show_bug.cgi?id=2272112backstage/backend-common: path traversal through symlinks

EPSS

Процентиль: 59%
0.00385
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVSS3: 8.7
nvd
больше 1 года назад

`@backstage/backend-common` is a common functionality library for backends for Backstage, an open platform for building developer portals. In `@backstage/backend-common` prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the `resolveSafeChildPath` utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in `@backstage/backend-common` versions 0.21.1, 0.20.2, and 0.19.10.

CVSS3: 8.7
github
больше 1 года назад

`@backstage/backend-common` vulnerable to path traversal through symlinks

EPSS

Процентиль: 59%
0.00385
Низкий

5.5 Medium

CVSS3