CVE-2023-35887

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache MINA.

In SFTP servers implemented using Apache MINA SSHD that use a RootedFileSystem, logged users may be able to discover "exists/does not exist" information about items outside the rooted tree via paths including parent navigation ("..") beyond the root, or involving symlinks.

This issue affects Apache MINA: from 1.0 before 2.10. Users are recommended to upgrade to 2.10

Published: Jul 10, 2023
Updated: May 10, 2024
CVE: CVE-2023-35887
GHSA: GHSA-mjmq-gwgm-5qhm
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-200
CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
apache / sshd	1.0.0	2.9.3
org.apache.sshd / sshd-common	2.1.0	2.9.3
org.apache.sshd / sshd-sftp	1.0.0	2.9.3
org.apache.sshd / sshd-core	1.0.0	2.1.0

https://github.com/apache/mina-sshd/commit/10de190e7d3f9189deb76b8d08c72334a1fe2df0
https://github.com/apache/mina-sshd/commit/a61e93035f06bff8fc622ad94870fb773d48b9f0
https://github.com/apache/mina-sshd/commit/c20739b43aab0f7bf2ccad982a6cb37b9d5a8a0b
https://github.com/apache/mina-sshd/pull/362
https://issues.apache.org/jira/browse/SSHD-1324
https://lists.apache.org/thread/b9qgtqvhnvgfpn0w1gz918p21p53tqk2

Vulnerability Database

CVE-2023-35887