CVE-2023-37460Path Traversal in Plexus-archiver

CWE-22Path TraversalCWE-61UNIX Symbolic Link (Symlink) Following6 documents5 sources
Severity
9.8CRITICALNVD
EPSS
36.6%
top 2.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Codehaus-plexus Plexus-archiverMsrc Azl3 Javapackages-bootstrap 1.5.0-4 ON Azure Linux 3.0Msrc Azure Linux 3.0 ARM+4 more
Timeline
PublishedJul 25

Description

Plexis Archiver is a collection of Plexus components to create archives or extract archives to a directory with a unified `Archiver`/`UnArchiver` API. Prior to version 4.8.0, using AbstractUnArchiver for extracting an archive might lead to an arbitrary file creation and possibly remote code execution. When extracting an archive with an entry that already exists in the destination directory as a symbolic link whose target does not exist - the `resolveFile()` function will return the symlink's sou

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages7 packages

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
Arbitrary File Creation in AbstractUnArchiver2023-07-25
OSV
CVE-2023-37460: Plexis Archiver is a collection of Plexus components to create archives or extract archives to a directory with a unified `Archiver`/`UnArchiver` API2023-07-25
OSV
Arbitrary File Creation in AbstractUnArchiver2023-07-25

📋Vendor Advisories

2
Red Hat
plexus-archiver: Arbitrary File Creation in AbstractUnArchiver2023-07-25
Microsoft
Plexus Archiver vulnerable to Arbitrary File Creation in AbstractUnArchiver2023-07-11