Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cxf6e7f2c1-dc59 @ Npm-yauzl-2.10.0 #888

Open
cyber-sast opened this issue Oct 1, 2024 · 0 comments
Open

Cxf6e7f2c1-dc59 @ Npm-yauzl-2.10.0 #888

cyber-sast opened this issue Oct 1, 2024 · 0 comments
Labels
branch:master Checkmarx project:takenet/blip-ds SCA

Comments

@cyber-sast
Copy link

cyber-sast commented Oct 1, 2024
edited
Loading

Checkmarx (SCA): Vulnerable Package
Vulnerability: Read More about Cxf6e7f2c1-dc59
Applications: Visão Geral
Checkmarx Project: takenet/blip-ds
Repository URL: https://github.com/takenet/blip-ds
Branch: master
Scan ID: 6f0d76c7-ef9a-4ef2-94dc-ca624d6b1227

The package yauzl is vulnerable to Arbitrary File Write implemented through improper validation of symlinks. The function validateFileName in the file index.js doesn't validate malicious symlink files when checking for path traversal attacks. It is possible to create a malicious archive containing symlinks which leads to the file decompression outside the original filesystem location. This can be abused to read/write files in an arbitrary location. This affects the three CIA impact metrics: Confidentiality, Integrity and Availability. All of the versions appear to be vulnerable, as the Issue still has not been addressed and no fix is available.

Additional Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: HIGH
Availability impact: HIGH
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
branch:master Checkmarx project:takenet/blip-ds SCA
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@cyber-sast