Lucene search
GoogleOSV:GHSA-8P9R-F949-699GHistoryMay 10, 2021 - 6:46 p.m.
Path Traversal in browserless-chrome
2021-05-1018:46:48
Google
osv.dev
10
path traversal
browserless-chrome
version 1.43.0
workspace endpoint
file path
arbitrary file access
EPSS
0.002
Percentile
53.2%
This affects all versions of browserless-chrome before 1.43.0. User input flowing from the workspace endpoint gets used to create a file path filePath and this is fetched and then sent back to a user. This can be escaped to fetch arbitrary files from a server.
References
github.com/browserless/chrome
github.com/browserless/chrome/blob/master/src/routes.ts%23L175
github.com/browserless/chrome/commit/848b87e5bea4f8473eea85261a5ff922d6ebd2b6
github.com/browserless/chrome/releases/tag/1.40.2-chrome-stable
nvd.nist.gov/vuln/detail/CVE-2020-7758
snyk.io/vuln/SNYK-JS-BROWSERLESSCHROME-1023657
www.npmjs.com/package/browserless-chrome
Related
cvelist
cvelist
CVE-2020-7758 Path Traversal
2020-11-02 18:30:22
cve
cve
CVE-2020-7758
2020-11-02 22:15:13
nvd
nvd
CVE-2020-7758
2020-11-02 22:15:13
prion
prion
Path traversal
2020-11-02 22:15:00
osv
osv
CVE-2020-7758
2020-11-02 22:15:13
github
github
Path Traversal in browserless-chrome
2021-05-10 18:46:48