CVE-2023-36827

EPSS 1.09%
Veröffentlicht 05.07.2023 22:15:10
Zuletzt bearbeitet 21.11.2024 08:10:41
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Fides vulnerable to Path Traversal in Webserver API

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environment, and the enforcement of privacy regulations in code. A path traversal (directory traversal) vulnerability affects fides versions lower than version `2.15.1`, allowing remote attackers to access arbitrary files on the fides webserver container's filesystem. The vulnerability is patched in fides `2.15.1`.

If the Fides webserver API is not directly accessible to attackers and is instead deployed behind a reverse proxy as recommended in Ethyca's security best practice documentation, and the reverse proxy is an AWS application load balancer, the vulnerability can't be exploited by these attackers. An AWS application load balancer will reject this attack with a 400 error. Additionally, any secrets supplied to the container using environment variables rather than a `fides.toml` configuration file are not affected by this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ethyca ≫ Fides Version < 2.15.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.09%	0.61

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
security-advisories@github.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

https://github.com/ethyca/fides/commit/f526d9ffb176006d701493c9d0eff6b4884e811f

Patch

https://github.com/ethyca/fides/releases/tag/2.15.1

Release Notes

https://github.com/ethyca/fides/security/advisories/GHSA-r25m-cr6v-p9hq

Third Party Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-36827

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-36827

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-36827

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-36827