CVE-2016-1000249
fury-adapter-swagger allows arbitrary file read from system
描述
`fury-adapter-swagger` from version 0.2.0 until version 0.9.7 has a weakness that allows an attacker to read arbitrary files off of the system. This can be used to read sensitive data, or to cause a denial of service condition by attempting to read something like `/dev/zero`. ## Proof of Concept: ```yaml --- swagger: '2.0' info: title: Read local files version: '1.0' paths: /foo: get: responses: 200: description: Some description examples: text/html: example: $ref: '/etc/passwd' ``` ## Recommendation Upgrade to version 0.9.7 or later.
如何修補 CVE-2016-1000249
要修補 CVE-2016-1000249,請將受影響套件升級到下列已修補版本。
- —升級至 0.9.7 或更新版本
CVE-2016-1000249 正在被利用嗎?
目前沒有被利用訊號。CVE-2016-1000249 既不在 CISA KEV 也沒有最新的 EPSS 分數。
受影響套件(1)
- >= 0.2.0, < 0.9.7
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
參考連結(6)
- PATCHgithub.com/apiaryio/fury-adapter-swagger
- WEBgithub.com/apiaryio/fury-adapter-swagger/commit/777e2d68f03546a88f3203bbd4725df8b1f662a7
- WEBgithub.com/apiaryio/fury-adapter-swagger/commit/f4407e3a5323bc31123d45dbc93b8417002e4d51#diff-54c345dc104dc19440f9c2482b7883df820e8b9b699fdd8fa07e2773e7197a29
- WEB