CVE-2020-9479 - Vulnerability Details - OpenCVE

When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may be REJECTed as the issue did not affect any released versions of Apache AsterixDB

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.01892.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Asterixdb

Configuration 1 [-]

cpe:2.3:a:apache:asterixdb:*:*:*:*:*:*:*:*

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b%40%3Cdev.asterixdb.apache.org%3E
https://www.openwall.com/lists/oss-security/2020/08/08/2

History

No history.

MITRE

Status: PUBLISHED

Assigner: apache

Published: 2021-03-01T15:55:12.000Z

Updated: 2025-02-13T16:27:44.434Z

Reserved: 2020-03-01T00:00:00.000Z

Link: CVE-2020-9479

Vulnrichment

No data.

NVD

Status : Modified

Published: 2021-03-01T16:15:12.917

Modified: 2024-11-21T05:40:43.830

Link: CVE-2020-9479

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "Apache AsterixDB", "vendor": "Apache Software Foundation", "versions": [{"status": "affected", "version": "Apache AsterixDB git"}]}], "credits": [{"lang": "en", "value": "This issue was discovered by Yiming Xiang of NSFOCUS"}], "descriptions": [{"lang": "en", "value": "When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may be REJECTed as the issue did not affect any released versions of Apache AsterixDB"}], "problemTypes": [{"descriptions": [{"description": "directory traversal", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2024-08-04T10:27:49.000Z", "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.openwall.com/lists/oss-security/2020/08/08/2"}, {"name": "[asterixdb-dev] 20210301 Re: [EXT] Re: CVE Publication Service Request 941606", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b%40%3Cdev.asterixdb.apache.org%3E"}], "source": {"discovery": "UNKNOWN"}, "title": "unzip directory traversal", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@apache.org", "ID": "CVE-2020-9479", "STATE": "PUBLIC", "TITLE": "unzip directory traversal"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Apache AsterixDB", "version": {"version_data": [{"version_affected": "=", "version_name": "Apache AsterixDB", "version_value": "git"}]}}]}, "vendor_name": "Apache Software Foundation"}]}}, "credit": [{"lang": "eng", "value": "This issue was discovered by Yiming Xiang of NSFOCUS"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may be REJECTed as the issue did not affect any released versions of Apache AsterixDB"}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "directory traversal"}]}]}, "references": {"reference_data": [{"name": "https://www.openwall.com/lists/oss-security/2020/08/08/2", "refsource": "MISC", "url": "https://www.openwall.com/lists/oss-security/2020/08/08/2"}, {"name": "[asterixdb-dev] 20210301 Re: [EXT] Re: CVE Publication Service Request 941606", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b@%3Cdev.asterixdb.apache.org%3E"}]}, "source": {"discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T10:26:16.105Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.openwall.com/lists/oss-security/2020/08/08/2"}, {"name": "[asterixdb-dev] 20210301 Re: [EXT] Re: CVE Publication Service Request 941606", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b%40%3Cdev.asterixdb.apache.org%3E"}]}]}, "cveMetadata": {"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "cveId": "CVE-2020-9479", "datePublished": "2021-03-01T15:55:12.000Z", "dateReserved": "2020-03-01T00:00:00.000Z", "dateUpdated": "2025-02-13T16:27:44.434Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:asterixdb:*:*:*:*:*:*:*:*", "matchCriteriaId": "16A5B66C-7D3D-4738-A96D-A202971F07B2", "versionEndExcluding": "0.9.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may be REJECTed as the issue did not affect any released versions of Apache AsterixDB"}, {"lang": "es", "value": "Cuando se carga un UDF, un archivo zip especialmente dise\u00f1ado podr\u00eda permitir que archivos sean colocados fuera del directorio de implementaci\u00f3n del UDF. Este problema afect\u00f3 a compilaciones in\u00e9ditas de Apache AsterixDB entre las commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 y 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Nota: este CVE puede ser RECHAZADO ya que el problema no afect\u00f3 ninguna versi\u00f3n publicada de Apache AsterixDB"}], "id": "CVE-2020-9479", "lastModified": "2024-11-21T05:40:43.830", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-03-01T16:15:12.917", "references": [{"source": "security@apache.org", "url": "https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b%40%3Cdev.asterixdb.apache.org%3E"}, {"source": "security@apache.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://www.openwall.com/lists/oss-security/2020/08/08/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/r4cc9cc9c54573babf821c31d5d410fb260d1cd416dc1b225d587be9b%40%3Cdev.asterixdb.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://www.openwall.com/lists/oss-security/2020/08/08/2"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}