CVE-2017-18874

Aliases:GHSA-8qg8-c7mw-6fj7GO-2025-4148
Advisory lineage Upstream: 0 Downstream: 1
Modified
Published: 19 Jun 2020, 18:07
Last modified:05 Aug 2024, 21:37

Vulnerability Summary

Overall Risk (default)
medium
26/100
CVSS Score
6.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.49% LOW
0% probability -0.23%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

19 Jun 2020, 18:07
Published
Vulnerability first disclosed
05 Aug 2024, 21:37
Last Modified
Vulnerability information updated

Description

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. A System Admin can achieve directory traversal.

CVSS Metrics

  • v3.1MEDIUMScore: 6.5CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
  • v2.0MEDIUMScore: 5.5AV:N/AC:L/Au:S/C:P/I:P/A:N

EPSS Trends

Current EPSS score: 0.49% Percentile: 66%

Techniques & Countermeasures

  • CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

    The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Affected Systems

  • github.com/mattermostmattermost-server

    < 4.1.2-0.20171004201910-6be8113eb60 | ≥ 4.2.0-rc1, < 4.2.1-0.20171004194140-6d3cb2ce07fc | ≥ 4.3.0-rc1, < 4.3.0 | ≥ 4.3.0-rc1+incompatible, < 4.3.0+incompatible

  • mattermostmattermost_server

    < 4.1.2 | ≥ 4.2.0, < 4.2.1 | 4.3.0:rc1 | 4.3.0:rc2 | 4.3.0:rc3 | 4.3.0:rc4

References (8)