Arc Vulnerable to Path Traversal Attacks via 'Zip Slip'

CVE-2023-5938

8HIGH

Key Information

Vendor: Nozomi Networks
Status: Arc
Vendor: CVE Published:; 15 May 2024

Summary

Multiple functions use archives without properly validating the filenames therein, rendering the application vulnerable to path traversal via 'zip slip' attacks. An administrator able to provide tampered archives to be processed by the affected versions of Arc may be able to have arbitrary files extracted to arbitrary filesystem locations. Leveraging this issue, an attacker may be able to overwrite arbitrary files on the target filesystem and cause critical impacts on the system (e.g., arbitrary command execution on the victim’s machine).

Affected Version(s)

Arc < 1.6.0

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
May 15, 2024
Vulnerability Reserved.
Nov 2, 2023

Collectors

NVD DatabaseMitre Database

Credit

This issue was found by Gabriele Quagliarella of Nozomi Networks Security Research team during an internal penetration testing session.