Lucene search

AdobeCVELIST:CVE-2020-9708

HistoryAug 14, 2020 - 4:48 p.m.

CVE-2020-9708 GHSL-2020-133: Insufficient validation of user input in resolveRepositoryPath function

2020-08-1416:48:30

CWE-24

adobe

www.cve.org

cve-2020-9708

ghsl-2020-133

validation

user input

unauthorized access

private git repositories

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.003

Percentile

65.6%

JSON

The resolveRepositoryPath function doesn’t properly validate user input and a malicious user may traverse to any valid Git repository outside the repoRoot. This issue may lead to unauthorized access of private Git repositories as long as the malicious user knows or brute-forces the location of the repository.

CNA Affected

[
  {
    "product": "Helix",
    "vendor": "Adobe",
    "versions": [
      {
        "lessThan": "1.3.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/adobe/git-server/security/advisories/GHSA-cgj4-x2hh-2x93

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.003

Percentile

65.6%

JSON

Related for CVELIST:CVE-2020-9708