Lucene search

[email protected]CVE-2023-40274

HistoryAug 14, 2023 - 1:15 a.m.

CVE-2023-40274

2023-08-1401:15:47

CWE-22

[email protected]

web.nvd.nist.gov

130

cve-2023-40274

zola

web server

directory traversal

security vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.0%

JSON

An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the “zola serve” command, allows directory traversal. The handle_request function, used by the server to process HTTP requests, does not account for sequences of special path control characters (…/) in the URL when serving a file, which allows one to escape the webroot of the server and read arbitrary files from the filesystem.

Affected configurations

NVD

Node

getzolazolaRange0.13.0–0.17.2

CPENameOperatorVersion
getzola:zolagetzola zolale0.17.2

CPE	Name	Operator	Version
getzola:zola	getzola zola	le	0.17.2

References

github.com/getzola/zola/issues/2257

github.com/getzola/zola/pull/2258

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.0%

JSON

Related for CVE-2023-40274

osv2 alpinelinux1 prion1 cgr1 nvd1 github1 cvelist1 wolfi1