CVE-2020-15097

{"id": "CVE-2020-15097", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2021-02-02T18:15:11.420", "references": [{"url": "https://github.com/loklak/loklak_server/commit/50dd69230d3cd71dab0bfa7156682ffeca8ed8b9", "tags": ["Patch", "Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/loklak/loklak_server/security/advisories/GHSA-7557-4v29-rqw6", "tags": ["Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/loklak/loklak_server/commit/50dd69230d3cd71dab0bfa7156682ffeca8ed8b9", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/loklak/loklak_server/security/advisories/GHSA-7557-4v29-rqw6", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "loklak is an open-source server application which is able to collect messages from various sources, including twitter. The server contains a search index and a peer-to-peer index sharing interface. All messages are stored in an elasticsearch index. In loklak less than or equal to commit 5f48476, a path traversal vulnerability exists. Insufficient input validation in the APIs exposed by the loklak server allowed a directory traversal vulnerability. Any admin configuration and files readable by the app available on the hosted file system can be retrieved by the attacker. Furthermore, user-controlled content could be written to any admin config and files readable by the application. This has been patched in commit 50dd692. Users will need to upgrade their hosted instances of loklak to not be vulnerable to this exploit."}, {"lang": "es", "value": "loklak es una aplicaci\u00f3n de servidor de c\u00f3digo abierto que puede recopilar mensajes de varias fuentes, incluyendo Twitter. El servidor contiene un \u00edndice de b\u00fasqueda y una interfaz de intercambio de \u00edndices de igual a igual. Todos los mensajes son almacenados en un \u00edndice elasticsearch. En loklak menor o igual al commit 5f48476, se presenta una vulnerabilidad de salto de ruta. Una comprobaci\u00f3n insuficiente de la entrada en las API expuestas por el servidor de loklak permiti\u00f3 una vulnerabilidad de salto de directorio. Cualquier configuraci\u00f3n del administrador y los archivos legibles por la aplicaci\u00f3n disponibles en el sistema de archivos alojados pueden ser recuperados por el atacante. Adem\u00e1s, el contenido controlado por el usuario podr\u00eda escribirse en cualquier configuraci\u00f3n de administrador y archivos legibles por la aplicaci\u00f3n. Esto ha sido parcheado en el commit 50dd692. Los usuarios deber\u00e1n actualizar sus instancias alojadas de loklak para no ser vulnerables a esta explotaci\u00f3n"}], "lastModified": "2024-11-21T05:04:48.143", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:loklak_project:loklak:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80F8E47F-4BA9-44F2-9E37-1DCF5C87E690", "versionEndIncluding": "2020-01-22"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}