CVE-2023-34460 - OpenCVE

Tauri is a framework for building binaries for all major desktop platforms. The 1.4.0 release includes a regression on the Filesystem scope check for dotfiles on Unix. Previously dotfiles were not implicitly allowed by the glob wildcard scopes (eg. `$HOME/*`), but a regression was introduced when a configuration option for this behavior was implemented. Only Tauri applications using wildcard scopes in the `fs` endpoint are affected. The regression has been patched on version 1.4.1.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apple	Macos
Linux	Linux Kernel
Tauri	Tauri

Configuration 1 [-]

AND

cpe:2.3:a:tauri:tauri:1.4.0:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*

No data.

References

Link	Providers
https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564
https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347
https://github.com/tauri-apps/tauri/pull/7227
https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-06-23T19:09:54.173Z

Updated: 2024-08-02T16:10:07.301Z

Reserved: 2023-06-06T16:16:53.559Z

Link: CVE-2023-34460

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-06-23T20:15:09.147

Modified: 2023-07-05T16:13:13.693

Link: CVE-2023-34460

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-34460", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-06-06T16:16:53.559Z", "datePublished": "2023-06-23T19:09:54.173Z", "dateUpdated": "2024-08-02T16:10:07.301Z"}, "containers": {"cna": {"title": "Tauri vulnerable to Regression on Filesystem Scope Checks for Dotfiles", "problemTypes": [{"descriptions": [{"cweId": "CWE-285", "lang": "en", "description": "CWE-285: Improper Authorization", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm"}, {"name": "https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347", "tags": ["x_refsource_MISC"], "url": "https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347"}, {"name": "https://github.com/tauri-apps/tauri/pull/7227", "tags": ["x_refsource_MISC"], "url": "https://github.com/tauri-apps/tauri/pull/7227"}, {"name": "https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564", "tags": ["x_refsource_MISC"], "url": "https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564"}], "affected": [{"vendor": "tauri-apps", "product": "tauri", "versions": [{"version": "= 1.4.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-06-23T19:09:54.173Z"}, "descriptions": [{"lang": "en", "value": "Tauri is a framework for building binaries for all major desktop platforms. The 1.4.0 release includes a regression on the Filesystem scope check for dotfiles on Unix. Previously dotfiles were not implicitly allowed by the glob wildcard scopes (eg. `$HOME/*`), but a regression was introduced when a configuration option for this behavior was implemented. Only Tauri applications using wildcard scopes in the `fs` endpoint are affected. The regression has been patched on version 1.4.1.\n\n"}], "source": {"advisory": "GHSA-wmff-grcw-jcfm", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T16:10:07.301Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm"}, {"name": "https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347"}, {"name": "https://github.com/tauri-apps/tauri/pull/7227", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/tauri-apps/tauri/pull/7227"}, {"name": "https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tauri:tauri:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "CB02A4BD-CF71-49AE-943F-469EB7328175", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*", "matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E", "vulnerable": false}, {"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Tauri is a framework for building binaries for all major desktop platforms. The 1.4.0 release includes a regression on the Filesystem scope check for dotfiles on Unix. Previously dotfiles were not implicitly allowed by the glob wildcard scopes (eg. `$HOME/*`), but a regression was introduced when a configuration option for this behavior was implemented. Only Tauri applications using wildcard scopes in the `fs` endpoint are affected. The regression has been patched on version 1.4.1.\n\n"}], "id": "CVE-2023-34460", "lastModified": "2023-07-05T16:13:13.693", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.7, "impactScore": 2.7, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2023-06-23T20:15:09.147", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/tauri-apps/tauri/commit/066c09a6ea06f42f550d090715e06beb65cd5564"}, {"source": "security-advisories@github.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/tauri-apps/tauri/pull/6969#discussion_r1232018347"}, {"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/tauri-apps/tauri/pull/7227"}, {"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/tauri-apps/tauri/security/advisories/GHSA-wmff-grcw-jcfm"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-285"}], "source": "security-advisories@github.com", "type": "Primary"}]}