Skip to content

Log Downloading Could Traverse Entire Filesystem

High
Cyberboss published GHSA-r8pp-42wr-2gc4 Jul 31, 2020

Package

tgstation-server

Affected versions

4.4.0-4.4.1

Patched versions

>=4.4.2

Description

Impact

Users with permission to download logs can use the .. path identifier to download any file accessible by the server user.

Patches

f219028

Workarounds

Remove the Edit Users and Download Server Logs permissions from all users that should not have access to the host filesystem.

Severity

High
7.7
/ 10

CVSS base metrics

Attack vector
Network
Attack complexity
Low
Privileges required
Low
User interaction
None
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CVE ID

CVE-2020-16136

Weaknesses

No CWEs

Credits