Vulnerability Details : CVE-2023-35887
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA.
In SFTP servers implemented using Apache MINA SSHD that use a RootedFileSystem, logged users may be able to discover "exists/does not exist" information about items outside the rooted tree via paths including parent navigation ("..") beyond the root, or involving symlinks.
This issue affects Apache MINA: from 1.0 before 2.10. Users are recommended to upgrade to 2.10
Vulnerability category: Directory traversal
Products affected by CVE-2023-35887
- cpe:2.3:a:apache:sshd:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-35887
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 18 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-35887
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
2.8
|
1.4
|
NIST | |
5.0
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N |
3.1
|
1.4
|
Apache Software Foundation | |
4.3
|
MEDIUM | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
N/A
|
N/A
|
Oracle:CPUOct2023 |
CWE ids for CVE-2023-35887
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by:
- nvd@nist.gov (Secondary)
- security@apache.org (Primary)
References for CVE-2023-35887
-
https://lists.apache.org/thread/b9qgtqvhnvgfpn0w1gz918p21p53tqk2
CVE-2023-35887: Apache MINA SSHD: Information disclosure bugs with RootedFilesystem-Apache Mail ArchivesMailing List;Vendor Advisory
Jump to