CVE-2020-27304 in Civetwebproject and Siemens Products
Published on October 21, 2021

The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based file upload mechanism, via the mg_handle_form_request API. Web applications that use the file upload form handler, and use parts of the user-controlled filename in the output path, are susceptible to directory traversal

NVD

Weakness Type

Relative Path Traversal

The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory. This allows attackers to traverse the file system to access files or directories that are outside of the restricted directory.

Products Associated with CVE-2020-27304

stack.watch emails you whenever new vulnerabilities are published in Civetwebproject Civetweb or Siemens Sinec Infrastructure Network Services. Just hit a watch button to start following.

Civetwebproject Civetweb

Siemens Sinec Infrastructure Network Services

Affected Versions

civetweb_project civetweb:

Version 1.15 and below unspecified is unaffected.
Version 1.8 and below unspecified is affected.

Exploit Probability

EPSS

1.00%

Percentile

76.73%