CVE-2024-26150

2024-02-2316:15:48

CWE-22

[email protected]

web.nvd.nist.gov

backstage

backend

common

path traversal vulnerability

cve-2024-26150

nvd

8.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

8.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

@backstage/backend-common is a common functionality library for backends for Backstage, an open platform for building developer portals. In @backstage/backend-common prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the resolveSafeChildPath utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in @backstage/backend-common versions 0.21.1, 0.20.2, and 0.19.10.

Affected configurations

Vulners

Node

backstagebackstageMatch0.21.0

backstagebackstageRange<0.19.10

backstagebackstageRange0.20.0–0.20.2

VendorProductVersionCPE
backstagebackstage0.21.0cpe:2.3:a:backstage:backstage:0.21.0:*:*:*:*:*:*:*
backstagebackstage*cpe:2.3:a:backstage:backstage:*:*:*:*:*:*:*:*
backstagebackstage*cpe:2.3:a:backstage:backstage:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
backstage	backstage	0.21.0	cpe:2.3:a:backstage:backstage:0.21.0:::::::*
backstage	backstage	*	cpe:2.3:a:backstage:backstage::::::::
backstage	backstage	*	cpe:2.3:a:backstage:backstage::::::::

CNA Affected

[
  {
    "vendor": "backstage",
    "product": "backstage",
    "versions": [
      {
        "version": "= 0.21.0",
        "status": "affected"
      },
      {
        "version": "< 0.19.10",
        "status": "affected"
      },
      {
        "version": ">= 0.20.0, < 0.20.2",
        "status": "affected"
      }
    ]
  }
]