CVE-2024-27317

CWE-22 — Path Traversal5 documents5 sources

Severity

9.9CRITICAL

EPSS

1.0%

top 22.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Software Foundation Apache Pulsar Apache Pulsar

Timeline

PublishedMar 12

Description

In Pulsar Functions Worker, authenticated users can upload functions in jar or nar files. These files, essentially zip files, are extracted by the Functions Worker. However, if a malicious file is uploaded, it could exploit a directory traversal vulnerability. This occurs when the filenames in the zip files, which aren't properly validated, contain special elements like "..", altering the directory path. This could allow an attacker to create or modify files outside of the designated extraction …

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:LExploitability: 1.8 | Impact: 6.0

Affected Packages3 packages

▶Mavenorg.apache.pulsar:pulsar-functions-worker2.4.0 — 2.10.6+4

▶NVDapache/pulsar2.4.0 — 2.10.6+4

▶CVEListV5apache_software_foundation/apache_pulsar2.4.0 — 2.10.6+4

🔴Vulnerability Details

GHSA

Apache Pulsar: Pulsar Functions Worker's Archive Extraction Vulnerability Allows Unauthorized File Modification↗2024-03-12

▶

CVEList

Apache Pulsar: Pulsar Functions Worker's Archive Extraction Vulnerability Allows Unauthorized File Modification↗2024-03-12

▶

OSV

Apache Pulsar: Pulsar Functions Worker's Archive Extraction Vulnerability Allows Unauthorized File Modification↗2024-03-12

▶

📋Vendor Advisories

Red Hat

apache-pulsar: Pulsar Functions Worker's Archive Extraction Vulnerability Allows Unauthorized File Modification↗2024-03-12

▶