Description

Hoverfly is a lightweight service virtualization/ API simulation / API mocking tool for developers and testers. The `/api/v2/simulation` POST handler allows users to create new simulation views from the contents of a user-specified file. This feature can be abused by an attacker to read arbitrary files from the Hoverfly server. Note that, although the code prevents absolute paths from being specified, an attacker can escape out of the `hf.Cfg.ResponsesBodyFilesPath` base path by using `../` segments and reach any arbitrary files. This issue was found using the Uncontrolled data used in path expression CodeQL query for python. Users are advised to make sure the final path (`filepath.Join(hf.Cfg.ResponsesBodyFilesPath, filePath)`) is contained within the expected base path (`filepath.Join(hf.Cfg.ResponsesBodyFilesPath, "/")`). This issue is also tracked as GHSL-2023-274.

INFO

Published Date :

2024-09-02T16:07:17.599Z

Last Modified :

2024-09-03T14:22:12.634Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-45388 vulnerability.

Vendors Products
Hoverfly
  • Hoverfly
Spectolabs
  • Hoverfly
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-45388.

URL Resource
https://codeql.github.com/codeql-query-help/go/go-path-injection cve-icon cve-icon
https://github.com/SpectoLabs/hoverfly/releases/tag/v1.10.3 cve-icon cve-icon
https://github.com/SpectoLabs/hoverfly/security/advisories/GHSA-6xx4-x46f-f897 cve-icon cve-icon
https://github.com/spectolabs/hoverfly/blob/15d6ee9ea4e0de67aec5a41c28d21dc147243da0/core/handlers/v2/simulation_handler.go#L87 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact