CVE-2023-40274
CVSS V2 None
CVSS V3 None
Description
An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the "zola serve" command, allows directory traversal. The handle_request function, used by the server to process HTTP requests, does not account for sequences of special path control characters (../) in the URL when serving a file, which allows one to escape the webroot of the server and read arbitrary files from the filesystem.
Overview
- CVE ID
- CVE-2023-40274
- Assigner
- cve@mitre.org
- Vulnerability Status
- Analyzed
- Published Version
- 2023-08-14T01:15:47
- Last Modified Date
- 2023-08-22T17:47:49
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:getzola:zola:*:*:*:*:*:*:*:* | 1 | OR | 0.13.0 | 0.17.2 |
References
Reference URL | Reference Tags |
---|---|
https://github.com/getzola/zola/issues/2257 | Exploit Issue Tracking Vendor Advisory |
https://github.com/getzola/zola/pull/2258 | Patch |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-40274 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40274 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2023-09-06 03:41:05 | Added to TrackCVE | |||
2023-09-06 03:41:07 | Weakness Enumeration | new |