Lucene search

Veracode Vulnerability DatabaseVERACODE:41434

HistoryJul 21, 2023 - 4:16 a.m.

Denial Of Service (DoS)

2023-07-2104:16:24

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

ethyca-fides

dos

svg

validation checks

save_template function

connector_registry_service.py

admin-authenticated attacker

crash

application

zip file

malicious

billion laugh attack

4.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

21.1%

JSON

ethyca-fides is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the lack of validation checks for SVGs in the save_template function of connector_registry_service.py, which allows an admin authenticated attacker to crash the application by uploading a zip file containing a maliciously crafted SVG. This type of attack is called a “SVG” bomb, similar to a billion laugh attack.

CPENameOperatorVersion
ethyca-fidesle2.15.2b0
ethyca-fidesle2.15.2b0

CPE	Name	Operator	Version
	ethyca-fides	le	2.15.2b0
	ethyca-fides	le	2.15.2b0

References

github.com/advisories/GHSA-3rw2-wfc8-wmj5

github.com/ethyca/fides/commit/8beaace082b325e693dc7682029a3cb7e6c2b69d

github.com/ethyca/fides/security/advisories/GHSA-3rw2-wfc8-wmj5

4.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

21.1%

JSON

Related for VERACODE:41434