#VU62463 Path traversal in Moment - CVE-2022-24785

Cybersecurity Help s.r.o.

Published: 2022-04-20

Vulnerability identifier: #VU62463

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-24785

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Moment
Web applications / JS libraries

Vendor: Moment.js

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences within the npm version of Moment.js. A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Moment: 1.0.1 - 2.29.1

External links
https://github.com/moment/moment/commit/4211bfc8f15746be4019bba557e29a7ba83d54c5
https://github.com/moment/moment/security/advisories/GHSA-8hfj-j24r-96c4

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Watson Discovery for IBM Cloud Pak for Data

IBM Automation Assets in IBM Cloud Pak for Integration (CP4I) update for Moment.js

Multiple vulnerabilities in IBM Tivoli Network Manager IP Edition (ITNM)

Confluence Data Center and Server update for Moment.js

Multiple vulnerabilities in IBM Maximo Asset Management

Multiple vulnerabilities in IBM i Modernization Engine for Lifecycle Integration

Multiple vulnerabilities in IBM Storage Scale

Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data

IBM Cloud Pak System update for moment.js

Path traversal in IBM Storage Ceph