CVE-2023-5245 - OpenCVE

FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory. When creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract(). Arbitrary file creation can directly lead to code execution

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Combust	Mleap

Configuration 1 [-]

OR	cpe:2.3:a:combust:mleap:0.18.0:::::::*
	cpe:2.3:a:combust:mleap:0.23.0:::::::*

References

Link	Resource
https://github.com/combust/mleap/pull/866#issuecomment-1738032225	Issue Tracking Patch
https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: JFROG

Published: 2023-11-15T12:52:18.656Z

Updated: 2023-11-15T12:52:18.656Z

Reserved: 2023-09-28T06:08:57.423Z

Link: CVE-2023-5245

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-11-15T13:15:07.457

Modified: 2023-11-22T22:39:07.763

Link: CVE-2023-5245

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-5245", "assignerOrgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "state": "PUBLISHED", "assignerShortName": "JFROG", "dateReserved": "2023-09-28T06:08:57.423Z", "datePublished": "2023-11-15T12:52:18.656Z", "dateUpdated": "2023-11-15T12:52:18.656Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://mvnrepository.com", "packageName": "ml.combust.mleap.mleap-tensorflow", "versions": [{"greaterThanOrEqual": "0.18.0", "lessThan": "0.23.1", "status": "affected", "version": "0.18.0", "versionType": "maven"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.</p><p>When creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().</p><p>Arbitrary file creation can directly lead to code execution</p>"}], "value": "FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.\n\nWhen creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().\n\nArbitrary file creation can directly lead to code execution\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "48a46f29-ae42-4e1d-90dd-c1676c1e5e6d", "shortName": "JFROG", "dateUpdated": "2023-11-15T12:52:18.656Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/combust/mleap/pull/866#issuecomment-1738032225"}, {"tags": ["third-party-advisory"], "url": "https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/"}], "source": {"discovery": "EXTERNAL"}, "title": "Using MLeap for loading a saved model (zip archive) can lead to path traversal/arbitrary file creation and possibly remote code execution."}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:combust:mleap:0.18.0:*:*:*:*:*:*:*", "matchCriteriaId": "84FDDCAB-F580-4036-BDF5-3EBC2C7D6CB7", "vulnerable": true}, {"criteria": "cpe:2.3:a:combust:mleap:0.23.0:*:*:*:*:*:*:*", "matchCriteriaId": "5BBED8B0-FD39-44C2-A8E9-29734D62D3BA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory.\n\nWhen creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract().\n\nArbitrary file creation can directly lead to code execution\n\n"}, {"lang": "es", "value": "FileUtil.extract() enumera todas las entradas del archivo zip y extrae cada archivo sin validar si las rutas de los archivos en el archivo est\u00e1n fuera del directorio deseado. Al crear una instancia de TensorflowModel usando el formato save_model y un modelo de tensorflow exportado, la funci\u00f3n apply() invoca la implementaci\u00f3n vulnerable de FileUtil.extract(). La creaci\u00f3n arbitraria de archivos puede conducir directamente a la ejecuci\u00f3n del c\u00f3digo"}], "id": "CVE-2023-5245", "lastModified": "2023-11-22T22:39:07.763", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 5.9, "source": "reefs@jfrog.com", "type": "Secondary"}]}, "published": "2023-11-15T13:15:07.457", "references": [{"source": "reefs@jfrog.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/combust/mleap/pull/866#issuecomment-1738032225"}, {"source": "reefs@jfrog.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://research.jfrog.com/vulnerabilities/mleap-path-traversal-rce-xray-532656/"}], "sourceIdentifier": "reefs@jfrog.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "reefs@jfrog.com", "type": "Primary"}]}