CVE-2018-8008
MEDIUMApache Storm <1.0.6, <1.2.1, <1.1.2 - Path Traversal
Title source: llmDescription
Apache Storm version 1.0.6 and earlier, 1.2.1 and earlier, and version 1.1.2 and earlier expose an arbitrary file write vulnerability, that can be achieved using a specially crafted zip archive (affects other archives as well, bzip2, tar, xz, war, cpio, 7z), that holds path traversal filenames. So when the filename gets concatenated to the target extraction directory, the final path ends up outside of the target folder.
References (2)
Core 2
Core References
Mailing List x_refsource_confirm
https://lists.apache.org/thread.html/613b2fca8bcd0a3b12c0b763ea8f7cf62e422e9f79fce6cfa5b08a58%40%3Cdev.storm.apache.org%3E
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/104418
Scores
CVSS v3
5.5
EPSS
0.1535
EPSS Percentile
94.7%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Details
CWE
CWE-22
Status
published
Products (2)
apache/storm
< 1.0.6
org.apache.storm/storm-core
1.1.0 - 1.1.3Maven
Published
Jun 05, 2018
Tracked Since
Feb 18, 2026