2209400 – (CVE-2023-24815) CVE-2023-24815 vertx-web: StaticHandler disclosure of classpath resources on Windows when mounted on a wildcard route

Bug 2209400 (CVE-2023-24815) - CVE-2023-24815 vertx-web: StaticHandler disclosure of classpath resources on Windows when mounted on a wildcard route

Summary: CVE-2023-24815 vertx-web: StaticHandler disclosure of classpath resources on ...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2023-24815
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	2209392
TreeView+	depends on / blocked

Reported:	2023-05-23 19:08 UTC by Patrick Del Bello
Modified:	2024-03-15 19:28 UTC (History)
CC List:	89 users (show)
Fixed In Version:	vertx-web 4.3.8
Doc Type:	---
Doc Text:	A flaw was found in Vert.X Web. When running the application that serves files using StaticHandler on Windows Operating Systems and Windows File Systems, if the mount point is a wildcard (*), an attacker can exfiltrate any class path resource.
Clone Of:
Environment:
Last Closed:	2023-06-22 00:41:41 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2023:3740	0	None	None	None	2023-06-21 14:32:37 UTC
Red Hat Product Errata	RHSA-2023:7669	0	None	None	None	2023-12-06 22:07:31 UTC

Description Patrick Del Bello 2023-05-23 19:08:35 UTC

When running vertx web applications that serve files using StaticHandler on Windows Operating Systems and Windows File Systems, if the mount point is a wildcard (*) then an attacker can exfiltrate any class path resource.

Comment 4 errata-xmlrpc 2023-06-21 14:32:34 UTC

This issue has been addressed in the following products:

  RHINT Camel-Springboot 3.20.1.P1

Via RHSA-2023:3740 https://access.redhat.com/errata/RHSA-2023:3740

Comment 5 Product Security DevOps Team 2023-06-22 00:41:36 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2023-24815

Comment 7 errata-xmlrpc 2023-12-06 22:07:26 UTC

This issue has been addressed in the following products:

  Cryostat 2 on RHEL 8

Via RHSA-2023:7669 https://access.redhat.com/errata/RHSA-2023:7669

Note You need to log in before you can comment on or make changes to this bug.

aazores
adupliak
aileenc
alampare
alazarot
anstephe
asoldano
ataylor
avibelli
bbaranow
bgeorges
bmaxwell
brian.stansberry
caswilli
cdewolf
chazlett
clement.escoffier
dandread
darran.lofthouse
dffrench
dhanak
dkreling
dosoudil
eaguilar
ebaron
emingora
eric.wittmann
fjansen
fjuma
fmongiar
ggastald
gjospin
gmalinko
gsmet
gzaronik
hamadhan
hbraun
ibek
ivassile
iweiss
janstey
jkang
jmartisk
jnethert
jpallich
jpavlik
jpechane
jpoth
jrokos
jross
jscholz
kaycoth
kverlaen
lbacciot
lgao
lpetrovi
lthon
max.andersen
mnovotny
mosmerov
msochure
msvehla
ngough
nwallace
pantinor
pdelbell
peholase
pgallagh
pjindal
pmackay
probinso
rgodfrey
rguimara
rrajasek
rruss
rstancel
rsvoboda
saroy
sbiarozk
sdouglas
sfroberg
smaestri
sthirugn
swoodman
tcunning
tom.jenkinson
tqvarnst
vkrizan
yfang