COSMOS Path Traversal Vulnerability Allows Downloading of .txt Files
CVE-2024-46977

6.5MEDIUM

Key Information:

Vendor: OpenC3
Status: Cosmos
Vendor: CVE Published:; 2 October 2024

What is CVE-2024-46977?

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. A path traversal vulnerability inside of LocalMode's open_local_file method allows an authenticated user with adequate permissions to download any .txt via the ScreensController#show on the web server COSMOS is running on (depending on the file permissions). This vulnerability is fixed in 5.19.0.

References

https://github.com/OpenC3/cosmos/security/advisories/GHSA...

https://github.com/OpenC3/cosmos/commit/a34e61aea5a465f0a...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 2, 2024

CVE-2024-46977 Data

JSON