#VU70539 External Control of File Name or Path in osc - CVE-2019-3681

Cybersecurity Help s.r.o.

Published: 2022-12-29

Vulnerability identifier: #VU70539

Vulnerability risk: High

CVSSv4.0: 5.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2019-3681

CWE-ID: CWE-73

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
osc
Client/Desktop applications / Other client software

Vendor: SUSE

Description

The vulnerability allows a remote attacker to overwrite arbitrary files during file download.

The vulnerability exists due to application allows an attacker to control path of the files that are being downloaded. A remote attacker can change downloaded packages to overwrite arbitrary files on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

osc: before 0.162.1

External links
https://bugzilla.suse.com/show_bug.cgi?id=1122675

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE update for osc

openEuler 20.03 LTS update for osc

Arbitrary file overwrite in osc