CVE-2019-3816

HIGH

openwsman <= 2.6.9 - Unauthenticated Arbitrary File Disclosure via Working Directory Misconfiguration

Title source: llm
STIX 2.1

Description

Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request to openwsman server.

References (11)

Core 11
Core References
Third Party Advisory, VDB Entry vdb-entry
http://www.securityfocus.com/bid/107368
Third Party Advisory, VDB Entry vdb-entry
http://www.securityfocus.com/bid/107409
Third Party Advisory vendor-advisory
https://access.redhat.com/errata/RHSA-2019:0638
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00006.html
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00065.html
Third Party Advisory vendor-advisory
https://access.redhat.com/errata/RHSA-2019:0972
Issue Tracking, Third Party Advisory
http://bugzilla.suse.com/show_bug.cgi?id=1122623
Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3816

Scores

CVSS v3 7.5
EPSS 0.0096
EPSS Percentile 76.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (20)
fedoraproject/fedora 28
fedoraproject/fedora 29
fedoraproject/fedora 30
opensuse/leap 15.0
opensuse/leap 42.3
openwsman_project/openwsman < 2.6.9
redhat/enterprise_linux 8.0
redhat/enterprise_linux_desktop 7.0
redhat/enterprise_linux_eus 8.1
redhat/enterprise_linux_eus 8.2
... and 10 more
Published Mar 14, 2019
Tracked Since Feb 18, 2026