CVE-2024-6829

Exploit

EPSS 0.1%
Veröffentlicht 20.03.2025 10:10:50
Zuletzt bearbeitet 23.07.2025 20:57:12
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to exploit the `tarfile.extractall()` function to extract the contents of a maliciously crafted tarfile to arbitrary locations on the host server. The attacker can control `repo.path` and `run_hash` to bypass directory existence checks and extract files to unintended locations, potentially overwriting critical files. This can lead to arbitrary data being written to arbitrary locations on the remote tracking server, which could be used for further attacks such as writing a new SSH key to the target server.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Aimstack ≫ Aim Version3.19.3 SwPlatformpython

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.1%	0.275

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	9.1	3.9	5.2	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-73 External Control of File Name or Path

The product allows user input to control or influence paths or file names that are used in filesystem operations.

https://huntr.com/bounties/7c97065c-1b63-4982-82c1-8038be0ed570

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-6829

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6829

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6829

EUVD