Vulnerability Description
In Tipask < 3.5.9, path parameters entered by the user are not validated when downloading attachments, a registered user can download arbitrary files on the Tipask server such as .env, /etc/passwd, laravel.log, causing infomation leakage.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tipask | Tipask | < 3.5.9 |
Related Weaknesses (CWE)
References
- https://github.com/sdfsky/tipask/blob/c4e6aa9f6017c9664780570016954c0922d203b7/aExploitThird Party Advisory
- https://github.com/sdfsky/tipask/commit/9b5f13d1708e9a5dc0959cb8a97be1c32b94ca69PatchThird Party Advisory
- https://www.yuque.com/henry-weply/penetration/fza5hmThird Party Advisory
- https://github.com/sdfsky/tipask/blob/c4e6aa9f6017c9664780570016954c0922d203b7/aExploitThird Party Advisory
- https://github.com/sdfsky/tipask/commit/9b5f13d1708e9a5dc0959cb8a97be1c32b94ca69PatchThird Party Advisory
- https://www.yuque.com/henry-weply/penetration/fza5hmThird Party Advisory
FAQ
What is CVE-2021-41714?
CVE-2021-41714 is a vulnerability with a CVSS score of 7.7 (HIGH). In Tipask < 3.5.9, path parameters entered by the user are not validated when downloading attachments, a registered user can download arbitrary files on the Tipask server such as .env, /etc/passwd, la...
How severe is CVE-2021-41714?
CVE-2021-41714 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-41714?
Check the references section above for vendor advisories and patch information. Affected products include: Tipask Tipask.