CVE-2021-29425

Aliases:GHSA-gwrp-pvrq-jmwv
Advisory lineage Upstream: 0 Downstream: 13
Modified
Published: 13 Apr 2021, 06:50
Last modified:03 Aug 2024, 22:02

Vulnerability Summary

Overall Risk (default)
medium
33/100
CVSS Score
5.8 MEDIUM
v2.0 (nvd)
EPSS Score
0.48% LOW
0% probability -0.14%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected

Timeline

13 Apr 2021, 06:50
Published
Vulnerability first disclosed
03 Aug 2024, 22:02
Last Modified
Vulnerability information updated

Description

In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path traversal), if the calling code would use the result to construct a path value.

CVSS Metrics

  • v3.1MEDIUMScore: 4.8CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
  • v2.0MEDIUMScore: 5.8AV:N/AC:M/Au:N/C:P/I:P/A:N

EPSS Trends

Current EPSS score: 0.48% Percentile: 66%

Techniques & Countermeasures

  • CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

    The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

  • CWE-20Improper Input Validation

    The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Affected Systems

  • apache software foundationapache commons io

    Apache Commons IO 2.2 | Apache Commons IO 2.3 | Apache Commons IO 2.4 | Apache Commons IO 2.5 | Apache Commons IO 2.6

  • apachecommons_io

    2.2 | 2.3 | 2.4 | 2.5 | 2.6

  • debiandebian_linux

    9.0

  • com.cosium.vetvet

    ≥ 1.0, ≤ 3.22

  • commons-iocommons-io

    < 2.7

  • com.virjarratel-api

    ≥ 1.0.0, ≤ 1.3.6

  • net.hasorcobble-lang

    ≥ 4.4.1, ≤ 4.6.2

  • org.apache.servicemix.bundlesorg.apache.servicemix.bundles.commons-io

    ≥ 1.4, ≤ 1.5

  • org.checkerframework.annotatedlibcommons-io

    ≥ 2.6, < 2.7

  • org.smartboot.servletservlet-core

    ≥ 0.1.9, ≤ 0.6

  • netappactive_iq_unified_manager

    na

  • oracleaccess_manager

    11.1.2.3.0 | 12.2.1.3.0 | 12.2.1.4.0

  • oracleagile_engineering_data_management

    6.2.1.0

  • oracleagile_plm

    9.3.6

  • oracleapplication_performance_management

    13.4.1.0 | 13.5.1.0

  • oracleapplication_testing_suite

    13.3.0.1

  • oraclebanking_apis

    18.1 | 18.2 | 18.3 | 19.1 | 19.2 | 20.1 | 21.1

  • oraclebanking_digital_experience

    17.2 | 18.1 | 18.3 | 19.1 | 19.2 | 20.1 | 21.1

  • oraclebanking_enterprise_default_management

    2.6.2 | 2.7.0 | 2.7.1 | 2.10.0 | 2.12.0

  • oraclebanking_enterprise_default_managment

    ≥ 2.3.0, ≤ 2.4.0

  • oraclebanking_party_management

    2.7.0

  • oraclebanking_platform

    ≥ 2.3.0, ≤ 2.4.1 | 2.6.2 | 2.7.0 | 2.7.1

  • oracleblockchain_platform

    < 21.1.2

  • oraclecommerce_guided_search

    11.3.2

  • oraclecommunications_application_session_controller

    3.9.0

  • oraclecommunications_billing_and_revenue_management_elastic_charging_engine

    11.3 | 12.0

  • oraclecommunications_cloud_native_core_network_repository_function

    1.14.0

  • oraclecommunications_cloud_native_core_policy

    1.14.0

  • oraclecommunications_cloud_native_core_unified_data_repository

    1.4.0

  • oraclecommunications_contacts_server

    8.0.0.6.0

  • oraclecommunications_converged_application_server_-_service_controller

    6.2

  • oraclecommunications_convergence

    3.0.2.2.0

  • oraclecommunications_design_studio

    ≥ 7.4.0, ≤ 7.4.2 | 7.3.5

  • oraclecommunications_diameter_intelligence_hub

    ≥ 8.0.0, ≤ 8.1.0 | ≥ 8.2.0, ≤ 8.2.3

  • oraclecommunications_interactive_session_recorder

    6.3 | 6.4

  • oraclecommunications_offline_mediation_controller

    12.0.0.3

  • oraclecommunications_order_and_service_management

    7.3 | 7.4

  • oraclecommunications_policy_management

    12.5.0.0.0

  • oraclecommunications_pricing_design_center

    12.0.0.4.0 | 12.0.0.5.0

  • oraclecommunications_service_broker

    6.2

  • oracleenterprise_communications_broker

    3.3

  • oracleenterprise_session_border_controller

    8.4 | 9.0

  • oraclefinancial_services_analytical_applications_infrastructure

    ≥ 8.0.7, ≤ 8.1.1

  • oraclefinancial_services_model_management_and_governance

    ≥ 8.0.8, ≤ 8.1.1

  • oracleflexcube_core_banking

    ≥ 11.6.0, ≤ 11.8.0 | 5.2.0 | 11.10.0

  • oraclefusion_middleware_mapviewer

    12.2.1.4.0

  • oraclehealth_sciences_data_management_workbench

    2.5.2.1 | 3.0.0.0

  • oraclehealth_sciences_information_manager

    ≥ 3.0.1, ≤ 3.0.4

  • oraclehealthcare_data_repository

    8.1.0

  • oraclehelidon

    1.4.7 | 2.2.0

Showing first 50 affected entries in server-rendered view.

References (90)