Lucene search

GoogleOSV:CVE-2024-37169

HistoryJun 10, 2024 - 10:15 p.m.

CVE-2024-37169

2024-06-1022:15:12

Google

osv.dev

jmondi/url-to-png

self-hosted

arbitrary file read

playright's screenshot

file wrapper

protocol http

protocol https

upgrade

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.6%

JSON

@jmondi/url-to-png is a self-hosted URL to PNG utility. Versions prior to 2.0.3 are vulnerable to arbitrary file read if a threat actor uses the Playright’s screenshot feature to exploit the file wrapper. Version 2.0.3 mitigates this issue by requiring input URLs to be of protocol http or https. No known workarounds are available aside from upgrading.

CPENameOperatorVersion
url-to-pngeq1.2.0
url-to-pngeq0.12.3
url-to-pngeq1.4.2
url-to-pngeq0.11.0
url-to-pngeq0.10.0
url-to-pngeq0.12.0-rc1
url-to-pngeq0.11.1
url-to-pngeq1.1.0
url-to-pngeq2.0.0
url-to-pngeq1.3.2-rc.0

Name	Operator	Version
url-to-png	eq	1.2.0
url-to-png	eq	0.12.3
url-to-png	eq	1.4.2
url-to-png	eq	0.11.0
url-to-png	eq	0.10.0
url-to-png	eq	0.12.0-rc1
url-to-png	eq	0.11.1
url-to-png	eq	1.1.0
url-to-png	eq	2.0.0
url-to-png	eq	1.3.2-rc.0

Rows per page:

1-10 of 301

References

github.com/jasonraimondi/url-to-png/commit/9336020c5e603323f5cf4a2ac3bb9a7735cf61f7

github.com/jasonraimondi/url-to-png/issues/47

github.com/jasonraimondi/url-to-png/releases/tag/v2.0.3

github.com/jasonraimondi/url-to-png/security/advisories/GHSA-665w-mwrr-77q3

github.com/user-attachments/files/15536336/Arbitrary.File.Read.via.Playwright.s.Screenshot.Feature.Exploiting.File.Wrapper.pdf

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.6%

JSON

Related for OSV:CVE-2024-37169