Lucene search
GitHub Advisory DatabaseGHSA-6324-52PR-H4P5HistoryDec 13, 2023 - 1:24 p.m.
Using the directory back payload (“/../”) in a package name allows placement of package in other folders.
2023-12-1313:24:53
CWE-22
GitHub Advisory Database
github.com
7
umbraco
backoffice
package directory traversal
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
EPSS
0.001
Percentile
16.2%
Impact
Backoffice users with permissions to create packages can use path traversal and thereby write outside of the expected location.
Explanation of the vulnerability
The “Package” section in Umbraco Backoffice allows a logged in user to write folders outside of the default package directory.
Affected configurations
Node
umbraco.cmsRange11.0.0–12.3.4
ORumbraco.cmsRange9.0.0–10.8.1
ORumbraco.cmsRange8.0.0–8.18.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| * | umbraco.cms | * | cpe:2.3:a:*:umbraco.cms:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
nvd
nvd
CVE-2023-49089
2023-12-12 19:15:07
osv
osv
Using the directory back payload (“/../”) in a package name allows placement of package in other folders.
2023-12-13 13:24:53
CVE-2023-49089
2023-12-12 19:15:07
prion
prion
Path traversal
2023-12-12 19:15:00
veracode
veracode
Path Traversal
2023-12-13 06:10:34
cve
cve
CVE-2023-49089
2023-12-12 19:15:07
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
EPSS
0.001
Percentile
16.2%
Related for GHSA-6324-52PR-H4P5