CVE-2018-1299

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Allura
Vendor: CVE Published:; 6 February 2018

Summary

In Apache Allura before 1.8.0, unauthenticated attackers may retrieve arbitrary files through the Allura web application. Some webservers used with Allura, such as Nginx, Apache/mod_wsgi or paster may prevent the attack from succeeding. Others, such as gunicorn do not prevent it and leave Allura vulnerable.

Affected Version(s)

Apache Allura 1.0.0 to 1.7.0

References

https://allura.apache.org/posts/2018-allura-1.8.0.html

x_refsource_CONFIRM

https://lists.apache.org/thread.html/b52069073cf3cb0f84c9...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 6, 2018
Vulnerability Reserved
Dec 7, 2017