CVE-2023-35887

Aliases:GHSA-mjmq-gwgm-5qhm
Advisory lineage Upstream: 0 Downstream: 5
Modified
Published: 10 Jul 2023, 09:28
Last modified:07 Oct 2024, 19:40

Vulnerability Summary

Overall Risk (default)
low
20/100
CVSS Score
5 MEDIUM
v3.1 (cve.org)
EPSS Score
0.11% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

10 Jul 2023, 09:28
Published
Vulnerability first disclosed
07 Oct 2024, 19:40
Last Modified
Vulnerability information updated

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA. In SFTP servers implemented using Apache MINA SSHD that use a RootedFileSystem, logged users may be able to discover "exists/does not exist" information about items outside the rooted tree via paths including parent navigation ("..") beyond the root, or involving symlinks. This issue affects Apache MINA: from 1.0 before 2.10. Users are recommended to upgrade to 2.10

CVSS Metrics

  • v3.1MEDIUMScore: 5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
  • v3.1MEDIUMScore: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS Trends

Current EPSS score: 0.11% Percentile: 28%

Techniques & Countermeasures

  • CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

    The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Affected Systems

  • apache software foundationapache mina sshd

    ≥ 1.0, < 2.10

  • apachesshd

    ≥ 1.0.0, < 2.9.3

  • org.apache.sshdsshd-common

    ≥ 2.1.0, < 2.9.3

  • org.apache.sshdsshd-core

    ≥ 1.0.0, < 2.1.0

  • org.apache.sshdsshd-sftp

    ≥ 1.0.0, < 2.9.3

References (8)