GitHub_MCVELIST:CVE-2022-23457CVE-2022-23457 Path Traversal in ESAPI
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.4%
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library. Prior to version 2.3.0.0, the default implementation of Validator.getValidDirectoryPath(String, String, File, boolean) may incorrectly treat the tested input string as a child of the specified parent directory. This potentially could allow control-flow bypass checks to be defeated if an attack can specify the entire string representing the ‘input’ path. This vulnerability is patched in release 2.3.0.0 of ESAPI. As a workaround, it is possible to write one’s own implementation of the Validator interface. However, maintainers do not recommend this.
CNA Affected
[
{
"vendor": "OWASP ESAPI",
"product": "org.owasp.esapi:esapi",
"versions": [
{
"version": "2.3.0.0",
"status": "affected",
"lessThan": "2.3.0.0",
"versionType": "custom"
}
]
}
]References
github.com/ESAPI/esapi-java-legacy/blob/develop/documentation/esapi4java-core-2.3.0.0-release-notes.txt
github.com/ESAPI/esapi-java-legacy/security/advisories/GHSA-8m5h-hrqm-pxm2
security.netapp.com/advisory/ntap-20230127-0014/
securitylab.github.com/advisories/GHSL-2022-008_The_OWASP_Enterprise_Security_API/
www.oracle.com/security-alerts/cpujul2022.html
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.4%