CVE-2024-28064

Name of the Vulnerable Software and Affected Versions Kiteworks Totemomail versions 7.x through 8.2.1

Description The issue allows for directory traversal, enabling unauthenticated file read and delete operations, as well as write operations, through the /responsiveUI/EnvelopeOpenServlet endpoint, specifically with the messageId parameter, and the displayLoginChunkedImages and storeLoginChunkedImages variables.

Recommendations For Kiteworks Totemomail versions 7.x through 8.2.1, update to version 8.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the /responsiveUI/EnvelopeOpenServlet endpoint until a patch is available. Avoid using the messageId parameter in the affected endpoint until the issue is resolved. Restrict the use of displayLoginChunkedImages and storeLoginChunkedImages variables to minimize the risk of exploitation.