CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49793 – Path traversal in `CodeChecker server` in the endpoint of `CodeChecker store`
https://notcve.org/view.php?id=CVE-2023-49793
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Zip files uploaded to the server endpoint of `CodeChecker store` are not properly sanitized. An attacker, using a path traversal attack, can load and display files on the machine of `CodeChecker server`. The vulnerable endpoint is `/Default/v6.53/CodeCheckerService@massStoreRun`. The path traversal vulnerability allows reading data on the machine of the `CodeChecker server`, with the same permission level as the `CodeChecker server`. The attack requires a user account on the `CodeChecker server`, with permission to store to a server, and view the stored report. • https://github.com/Ericsson/codechecker/commit/46bada41e32f3ba0f6011d5c556b579f6dddf07a https://github.com/Ericsson/codechecker/security/advisories/GHSA-h26w-r4m5-8rrf • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2021-44217
https://notcve.org/view.php?id=CVE-2021-44217
In Ericsson CodeChecker through 6.18.0, a Stored Cross-site scripting (XSS) vulnerability in the comments component of the reports viewer allows remote attackers to inject arbitrary web script or HTML via the POST JSON data of the /CodeCheckerService API. En Ericsson CodeChecker versiones hasta 6.18.0, una vulnerabilidad de tipo Cross-site scripting (XSS) Almacenado en el componente comments del visor de informes permite a atacantes remotos inyectar script web o HTML arbitrario por medio de los datos POST JSON de la API /CodeCheckerService • https://github.com/Hyperkopite/CVE-2021-44217 https://codechecker-demo.eastus.cloudapp.azure.com https://github.com/Ericsson/codechecker/pull/3549 https://github.com/Ericsson/codechecker/releases https://github.com/Hyperkopite/CVE-2021-44217/blob/main/README.md https://user-images.githubusercontent.com/9525971/142965091-e118b012-a7fc-4c2f-ad0c-80aeed6f7ec9.png • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •