CVE-2024-1485

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-1485
A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into parsing a devfile which uses the `parent` or `plugin` keywords. This could download a malicious archive and cause the cleanup process to overwrite or delete files outside of the archive, which should not be allowed.

8.0 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 5.8

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://access.redhat.com/security/cve/CVE-2024-1485
https://bugzilla.redhat.com/show_bug.cgi?id=2264106
https://github.com/advisories/GHSA-84xv-jfrm-h4gm
https://github.com/devfile/registry-support/commit/0e44b9ca6d03fac4fc3f77d37656d56dc5defe0d
https://github.com/devfile/registry-support/pull/197
Configurations

No configuration.

History

22 Feb 2024, 01:15

Type Values Removed Values Added
References
  • () https://github.com/advisories/GHSA-84xv-jfrm-h4gm -
  • () https://github.com/devfile/registry-support/pull/197 -

21 Feb 2024, 23:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.3 		v2 : unknown
v3 : 8.0

21 Feb 2024, 17:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.8 		v2 : unknown
v3 : 9.3
Summary
  • (es) Se encontró una vulnerabilidad en la función de descompresión del soporte de registro. Este problema puede ser desencadenado por un atacante remoto no autenticado al engañar a un usuario para que abra un archivo .tar especialmente modificado, lo que lleva al proceso de limpieza a seguir rutas relativas para sobrescribir o eliminar archivos fuera del alcance previsto.
Summary (en) A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into opening a specially modified .tar archive, leading to the cleanup process following relative paths to overwrite or delete files outside the intended scope. (en) A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into parsing a devfile which uses the `parent` or `plugin` keywords. This could download a malicious archive and cause the cleanup process to overwrite or delete files outside of the archive, which should not be allowed.

15 Feb 2024, 05:15

Type Values Removed Values Added
Summary (en) A vulnerability was found in the decompression function of registry-support. This issue can be triggered by an unauthenticated remote attacker when tricking a user into opening a specially modified .tar archive, leading to the cleanup process following relative paths to overwrite or delete files outside the intended scope. (en) A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into opening a specially modified .tar archive, leading to the cleanup process following relative paths to overwrite or delete files outside the intended scope.

14 Feb 2024, 00:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-02-14 00:15

Updated : 2024-02-22 01:15

NVD link : CVE-2024-1485

Mitre link : CVE-2024-1485

CVE.ORG link : CVE-2024-1485

JSON object : View

Products Affected

No product.

CWE
CWE-23

Relative Path Traversal