CVE-2017-17042Path Traversal in Yard

CWE-22Path Traversal11 documents8 sources
Severity
7.5HIGHNVD
EPSS
0.4%
top 38.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Yardoc Yard
Timeline
PublishedNov 28
Latest updateApr 15

Description

lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block relative paths with an initial ../ sequence, which allows attackers to conduct directory traversal attacks and read arbitrary files.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDyardoc/yard< 0.9.11
RubyGemsyardoc/yard< 0.9.11
Debianyardoc/yard< 0.9.12-1+3
Ubuntuyardoc/yard< 0.9.24-1+deb11u1build0.20.04.1+3

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

5
OSV
yard vulnerabilities2024-04-15
OSV
Arbitrary file read vulnerability in yard server2017-12-21
GHSA
Arbitrary file read vulnerability in yard server2017-12-21
CVEList
CVE-2017-17042: lib/yard/core_ext/file2017-11-28
OSV
CVE-2017-17042: lib/yard/core_ext/file2017-11-28

📋Vendor Advisories

3
Ubuntu
YARD vulnerabilities2024-04-15
Red Hat
rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks2017-11-24
Debian
CVE-2017-17042: yard - lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block rel...2017

💬Community

2
Bugzilla
CVE-2017-17042 rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks [fedora-all]2017-11-30
Bugzilla
CVE-2017-17042 rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks2017-11-30
CVE-2017-17042 — Path Traversal in Yardoc Yard | cvebase