cbcvebase.
CVE-2024-36117
published 2024-06-19

CVE-2024-36117: Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite v3.5.10 is affected by an…

PriorityP178high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
3.15%
86.3th percentile
Reposilite is an open source, lightweight and easy-to-use repository manager for Maven based artifacts in JVM ecosystem. Reposilite v3.5.10 is affected by an Arbitrary File Read vulnerability via path traversal while serving expanded javadoc files. Reposilite has addressed this issue in version 3.5.12. There are no known workarounds for this vulnerability. This issue was discovered and reported by the GitHub Security lab and is also tracked as GHSL-2024-074.

Affected

2 ranges
VendorProductVersion rangeFixed in
dzikoyskreposilite
reposilitereposilite>= 3.3.0 < 3.5.123.5.12

Detection & IOCsextracted from sources · hover to see the quote

url/javadoc/releases/javadoc/1.0.0//raw/..%5c..%2f..%2f..%2f..%2f..%2freposilite.db
pathreposilite.db
  • Detect path traversal attempts against the /javadoc/ endpoint using mixed encoding (backslash %5c and forward slash %2f) in the URL path targeting reposilite.db
  • Use Shodan favicon hash 1212523028 to identify exposed Reposilite instances on the internet for proactive scanning
  • ·The path traversal payload uses a mixed-encoding technique combining %5c (backslash) and %2f (forward slash) sequences; detection rules must account for both encoded forms and their combinations to avoid bypass
  • ·The vulnerability is exploitable without authentication (PR:N, UI:N per CVSS), so no credential-based detection filtering should be applied — all requests to /javadoc/.*/raw/ containing traversal sequences should be flagged
  • ·Affected versions are Reposilite >= 3.3.0 and < 3.5.12; version fingerprinting should be used to scope detection to vulnerable instances

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vulncheck8.6HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.