CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-41150 – Improper sanitization of delegated role names in tough
https://notcve.org/view.php?id=CVE-2021-41150
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, prior to 0.12.0, does not properly sanitize delegated role names when caching a repository, or when loading a repository from the filesystem. When the repository is cached or loaded, files ending with the .json extension could be overwritten with role metadata anywhere on the system. A fix is available in version 0.12.0. No workarounds to this issue are known. • https://github.com/awslabs/tough/commit/1809b9bd1106d78a51fbea3071aa97a3530bac9a https://github.com/awslabs/tough/security/advisories/GHSA-r56q-vv3c-6g9c https://github.com/theupdateframework/python-tuf/security/advisories/GHSA-wjw6-2cqr-j4qr • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-41149 – Improper sanitization of target names in tough
https://notcve.org/view.php?id=CVE-2021-41149
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, prior to 0.12.0, does not properly sanitize target names when caching a repository, or when saving specific targets to an output directory. When targets are cached or saved, files could be overwritten with arbitrary content anywhere on the system. A fix is available in version 0.12.0. No workarounds to this issue are known. • https://github.com/awslabs/tough/commit/1809b9bd1106d78a51fbea3071aa97a3530bac9a https://github.com/awslabs/tough/security/advisories/GHSA-x3r5-q6mj-m485 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2020-15093 – Improper verification of signature threshold in tough
https://notcve.org/view.php?id=CVE-2020-15093
The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures. It allows an attacker to duplicate a valid signature in order to circumvent TUF requiring a minimum threshold of unique signatures before the metadata is considered valid. A fix is available in version 0.7.1. CVE-2020-6174 is assigned to the same vulnerability in the TUF reference implementation. La biblioteca tough (Rust/crates.io) anterior a la versión 0.7.1, no verifica apropiadamente el umbral de firmas criptográficas. • https://crates.io/crates/tough https://github.com/awslabs/tough/security/advisories/GHSA-5q2r-92f9-4m49 https://github.com/theupdateframework/tuf/commit/2977188139d065ff3356c3cb4aec60c582b57e0e https://github.com/theupdateframework/tuf/pull/974 • CWE-347: Improper Verification of Cryptographic Signature •