CVE-2024-31226

EPSS 0.22%
Veröffentlicht 16.05.2024 19:15:49
Zuletzt bearbeitet 11.09.2025 21:41:19
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Sunshine's unquoted executable path could lead to hijacked execution flow

Sunshine is a self-hosted game stream host for Moonlight. Users who ran Sunshine versions 0.17.0 through 0.22.2 as a service on Windows may be impacted when terminating the service if an attacked placed a file named `C:\Program.exe`, `C:\Program.bat`, or `C:\Program.cmd` on the user's computer. This attack vector isn't exploitable unless the user has manually loosened ACLs on the system drive. If the user's system locale is not English, then the name of the executable will likely vary. Version 0.23.0 contains a patch for the issue. Some workarounds are available. One may identify and block potentially malicious software executed path interception by using application control tools, like Windows Defender Application Control, AppLocker, or Software Restriction Policies where appropriate. Alternatively, ensure that proper permissions and directory access control are set to deny users the ability to write files to the top-level directory `C:`. Require that all executables be placed in write-protected directories.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Lizardbyte ≫ Sunshine Version >= 0.17.0 < 0.23.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.22%	0.119

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	2.9	0.3	2.5	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:N
security-advisories@github.com	4.9	0.1	4.7	CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:H

CWE-428 Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

https://github.com/LizardByte/Sunshine/commit/93e622342c4f3e9b34f5f265039b6775b8e33a7a

Patch

https://github.com/LizardByte/Sunshine/pull/2379

Patch

Issue Tracking

https://github.com/LizardByte/Sunshine/security/advisories/GHSA-r3rw-mx4q-7vfp

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-31226

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-31226

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-31226

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-31226