Path Traversal Vulnerability in CodeChecker Store Endpoint
CVE-2023-49793

6.5MEDIUM

Key Information:

Vendor: Ericsson
Status: Codechecker
Vendor: CVE Published:; 24 June 2024

What is CVE-2023-49793?

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Zip files uploaded to the server endpoint of CodeChecker store are not properly sanitized. An attacker, using a path traversal attack, can load and display files on the machine of CodeChecker server. The vulnerable endpoint is /Default/v6.53/CodeCheckerService@massStoreRun. The path traversal vulnerability allows reading data on the machine of the CodeChecker server, with the same permission level as the CodeChecker server. The attack requires a user account on the CodeChecker server, with permission to store to a server, and view the stored report. This vulnerability has been patched in version 6.23.

Affected Version(s)

codechecker < 6.23.0

References

https://github.com/Ericsson/codechecker/security/advisori...

x_refsource_CONFIRM

https://github.com/Ericsson/codechecker/commit/46bada41e3...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2024
Vulnerability Reserved
Nov 30, 2023