CVE-2020-27304

Name of the Vulnerable Software and Affected Versions CivetWeb (affected versions not specified)

Description The issue concerns the CivetWeb web library, which does not validate uploaded filepaths when running on an operating system other than Windows. This occurs when using the built-in HTTP form-based file upload mechanism via the mg handle form request API. Web applications that use the file upload form handler and include parts of the user-controlled filename in the output path are susceptible to directory traversal. An attacker could exploit this vulnerability by sending a specially crafted HTTP request, potentially allowing remote code execution.

Recommendations As a temporary workaround, consider disabling the mg handle form request API function until a patch is available. Restrict access to the file upload form handler to minimize the risk of exploitation. Avoid using parts of the user-controlled filename in the output path. At the moment, there is no information about a newer version that contains a fix for this vulnerability.