CVE-2022-1537 — Time-of-check Time-of-use (TOCTOU) Race Condition in Grunt

CWE-367 — Time-of-check Time-of-use (TOCTOU) Race Condition9 documents7 sources

Severity

7.0HIGHNVD

EPSS

0.2%

top 52.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gruntjs Grunt Gruntjs Grunt

Timeline

PublishedMay 10

Latest updateFeb 7

Description

file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write in GitHub repository gruntjs/grunt prior to 1.5.3. This vulnerability is capable of arbitrary file writes which can lead to local privilege escalation to the GruntJS user if a lower-privileged user has write access to both source and destination directories as the lower-privileged user can create a symlink to the GruntJS user's .bashrc file or replace /etc/shadow file if the GruntJS user is …

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages4 packages

▶NVDgruntjs/grunt< 1.5.3

▶npmgruntjs/grunt< 1.5.3

▶CVEListV5gruntjs/gruntjs_gruntunspecified — 1.5.3

▶Debiangruntjs/grunt< 1.3.0-1+deb11u2+3

Patches

Patch: github.com ↗Patch: huntr.dev ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

grunt vulnerabilities↗2023-02-07

▶

GHSA

Race Condition in Grunt↗2022-05-11

▶

OSV

Race Condition in Grunt↗2022-05-11

▶

OSV

CVE-2022-1537: file↗2022-05-10

▶

CVEList

file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write in gruntjs/grunt↗2022-05-10

▶

📋Vendor Advisories

Ubuntu

Grunt vulnerabilities↗2023-02-07

▶

Red Hat

gruntjs: race condition leading to arbitrary file write↗2022-05-10

▶

Debian

CVE-2022-1537: grunt - file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leadin...↗2022

▶