CVE-2018-1261

CWE-22 — Path Traversal5 documents4 sources

Severity

4.7MEDIUM

EPSS

0.4%

top 42.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware Spring Integration ZIP Pivotal Spring Integration ZIP

Timeline

PublishedMay 11

Latest updateMay 13

Description

Spring-integration-zip versions prior to 1.0.1 exposes an arbitrary file write vulnerability, which can be achieved using a specially crafted zip archive (affects other archives as well, bzip2, tar, xz, war, cpio, 7z) that holds path traversal filenames. So when the filename gets concatenated to the target extraction directory, the final path ends up outside of the target folder.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages3 packages

▶NVDvmware/spring_integration_zip< 1.0.1

▶Mavenorg.springframework.integration:spring-integration-zip< 1.0.1

▶CVEListV5pivotal/spring_integration_zip5.0.x prior to 5.0.6; 4.3.x prior to 4.3.17, versions prior to 1.0.2+1

🔴Vulnerability Details

GHSA

spring-integration-zip Arbitrary File Write↗2022-05-13

▶

OSV

Path traversal in org.springframework.integration:spring-integration-zip↗2018-10-18

▶

GHSA

Path traversal in org.springframework.integration:spring-integration-zip↗2018-10-18

▶

CVEList

CVE-2018-1261: Spring-integration-zip versions prior to 1↗2018-05-11

▶