Path Manipulation Vulnerability in Python by the Python Software Foundation
CVE-2023-41105

7.5HIGH

Key Information:

Vendor: Python
Status: Python
Vendor: CVE Published:; 23 August 2023

Badges

👾 Exploit Exists

Summary

An issue exists in Python versions 3.11 through 3.11.4 where a path containing null ('\0') bytes can be processed by os.path.normpath(), leading to unexpected truncation. This alteration allows potentially unsafe filenames that would have been rejected in previous versions (3.10.x and earlier) to pass through, posing security risks for applications that rely on accurate path handling. Developers should be aware of this vulnerability to mitigate its implications on their systems.

References

https://github.com/python/cpython/issues/106242

https://github.com/python/cpython/pull/107983

https://github.com/python/cpython/pull/107981

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Oct 5, 2023
👾
Exploit known to exist
Oct 5, 2023
Vulnerability published
Aug 23, 2023
Vulnerability Reserved
Aug 23, 2023