CVE-2024-48735

Name of the Vulnerable Software and Affected Versions SAS Studio version 9.4

Description The issue allows a remote attacker to access internal files by manipulating the default path during file download through the /SASStudio/sasexec/sessions/{sessionID}/workspace/{InternalPath} endpoint, using variables such as sessionID and InternalPath. This is disputed by the vendor as these filesystem paths are allowed for authorized users.

Recommendations For SAS Studio version 9.4, as a temporary workaround, consider restricting access to the /SASStudio/sasexec/sessions/{sessionID}/workspace/{InternalPath} endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.