Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-31486

Опубликовано: 03 апр. 2025
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

Vite is a frontend tooling framework for javascript. The contents of arbitrary files can be returned to the browser. By adding ?.svg with ?.wasm?init or with sec-fetch-dest: script header, the server.fs.deny restriction was able to bypass. This bypass is only possible if the file is smaller than build.assetsInlineLimit (default: 4kB) and when using Vite 6.0+. Only apps explicitly exposing the Vite dev server to the network (using --host or server.host config option) are affected. This vulnerability is fixed in 4.5.12, 5.4.17, 6.0.14, 6.1.4, and 6.2.5.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Ansible Automation Platform 2automation-controllerFix deferred
Red Hat Ansible Automation Platform 2automation-eda-controllerFix deferred
Red Hat Ansible Automation Platform 2automation-gatewayFix deferred
Red Hat JBoss Enterprise Application Platform 8org.keycloak-keycloak-parentFix deferred
Red Hat JBoss Enterprise Application Platform Expansion Packorg.keycloak-keycloak-parentFix deferred
Red Hat OpenShift distributed tracing 3rhosdt/tempo-gateway-opa-rhel8Fix deferred
Red Hat OpenShift distributed tracing 3rhosdt/tempo-gateway-rhel8Fix deferred
Red Hat OpenShift distributed tracing 3rhosdt/tempo-jaeger-query-rhel8Fix deferred
Red Hat OpenShift distributed tracing 3rhosdt/tempo-query-rhel8Fix deferred
Red Hat OpenShift distributed tracing 3rhosdt/tempo-rhel8Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-200
Дефект:
CWE-284
https://bugzilla.redhat.com/show_bug.cgi?id=2357264vite: Vite allows server.fs.deny to be bypassed with .svg or relative paths

EPSS

Процентиль: 2%
0.00014
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-31486

CVSS3: 5.3
nvd
5 месяцев назад

Vite is a frontend tooling framework for javascript. The contents of arbitrary files can be returned to the browser. By adding ?.svg with ?.wasm?init or with sec-fetch-dest: script header, the server.fs.deny restriction was able to bypass. This bypass is only possible if the file is smaller than build.assetsInlineLimit (default: 4kB) and when using Vite 6.0+. Only apps explicitly exposing the Vite dev server to the network (using --host or server.host config option) are affected. This vulnerability is fixed in 4.5.12, 5.4.17, 6.0.14, 6.1.4, and 6.2.5.

debian логотип

CVE-2025-31486

CVSS3: 5.3
debian
5 месяцев назад

Vite is a frontend tooling framework for javascript. The contents of a ...

github логотип

GHSA-xcj6-pq6g-qj4x

CVSS3: 5.3
github
5 месяцев назад

Vite allows server.fs.deny to be bypassed with .svg or relative paths

EPSS

Процентиль: 2%
0.00014
Низкий

5.3 Medium

CVSS3