Lucene search

GitHub Advisory DatabaseGHSA-QG5V-JW6F-RPFJ

HistoryMay 14, 2022 - 1:52 a.m.

SabreDAV Directory Traversal vulnerability

2022-05-1401:52:20

CWE-20

CWE-22

GitHub Advisory Database

github.com

sabredav

directory traversal

html\browser plugin

windows

remote attackers

arbitrary files

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.002

Percentile

55.5%

JSON

The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.

Affected configurations

Vulners

Node

sabredavRange<1.6.9

sabredavRange<1.8.5

sabredavRange<1.7.7

VendorProductVersionCPE
sabredav*cpe:2.3:a:sabre:dav:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sabre	dav	*	cpe:2.3:a:sabre:dav::::::::

References

owncloud.org/about/security/advisories/oC-SA-2013-016/

github.com/advisories/GHSA-qg5v-jw6f-rpfj

github.com/FriendsOfPHP/security-advisories/blob/master/sabre/dav/CVE-2013-1939.yaml

groups.google.com/forum/?fromgroups=#!topic/sabredav-discuss/ehOUu7wTSGQ

groups.google.com/forum/?fromgroups=#%21topic/sabredav-discuss/ehOUu7wTSGQ

nvd.nist.gov/vuln/detail/CVE-2013-1939

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.002

Percentile

55.5%

JSON

Related for GHSA-QG5V-JW6F-RPFJ