4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
48.7%
Seafile is an open source cloud storage system. A sync token is used in
Seafile file syncing protocol to authorize access to library data. To
improve performance, the token is cached in memory in seaf-server. Upon
receiving a token from sync client or SeaDrive client, the server checks
whether the token exist in the cache. However, if the token exists in
cache, the server doesn’t check whether it’s associated with the specific
library in the URL. This vulnerability makes it possible to use any valid
sync token to access data from any known library. Note that the
attacker has to first find out the ID of a library which it has no access
to. The library ID is a random UUID, which is not possible to be guessed.
There are no workarounds for this issue.
Author | Note |
---|---|
ebarretto | seafile-server only |
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
48.7%