PT-2020-14768 · Tgstation · Tgstation-Server

Alexkar598

Published

2020-07-31

Updated

2021-07-21

CVE-2020-16136

CVSS v3.1

7.7

High

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions tgstation-server versions 4.4.0 through 4.4.1

Description The issue allows an authenticated user with log download permissions to access any file on the server machine using directory traversal sequences in /Administration/Logs/ requests. However, the attacker cannot enumerate files.

Recommendations For tgstation-server versions 4.4.0 and 4.4.1, consider restricting access to the /Administration/Logs/ endpoint until a fix is available, and limit file system access for the server process to minimize potential damage.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2020-16136

GHSA-R8PP-42WR-2GC4

Affected Products

Tgstation-Server

PT-2020-14768 · Tgstation · Tgstation-Server

CVE-2020-16136

Weakness Enumeration

Related Identifiers

Affected Products

References · 4