CVE-2023-39332

CWE-22Path Traversal5 documents5 sources
Severity
9.8CRITICAL
EPSS
0.6%
top 31.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Nodejs NodeNodejs Node.jsFedoraproject Fedora
Timeline
PublishedOct 18

Description

Various `node:fs` functions allow specifying paths as either strings or `Uint8Array` objects. In Node.js environments, the `Buffer` class extends the `Uint8Array` class. Node.js prevents path traversal through strings (see CVE-2023-30584) and `Buffer` objects (see CVE-2023-32004), but not through non-`Buffer` `Uint8Array` objects. This is distinct from CVE-2023-32004 which only referred to `Buffer` objects. However, the vulnerability follows the same pattern using `Uint8Array` instead of `Buffe

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5nodejs/node4.04.*+15
NVDnodejs/node.js20.0.020.8.0

Also affects: Fedora 39

🔴Vulnerability Details

2
GHSA
GHSA-9hm3-chgj-45rm: Various `node:fs` functions allow specifying paths as either strings or `Uint8Array` objects2023-10-18
CVEList
CVE-2023-39332: Various `node:fs` functions allow specifying paths as either strings or `Uint8Array` objects2023-10-18

📋Vendor Advisories

2
Red Hat
nodejs: path traversal through path stored in Uint8Array2023-10-13
Debian
CVE-2023-39332: nodejs - Various `node:fs` functions allow specifying paths as either strings or `Uint8Ar...2023
CVE-2023-39332 (CRITICAL CVSS 9.8) | Various `node:fs` functions allow s | cvebase.io