ADVISORIES

• CVE-2024-46977 (NVD)
• GHSA-8jxr-mccc-mwg8
• Vendor Advisory

GEM

openc3

SEVERITY

CVSS v3.x: 6.5 (Medium)

PATCHED VERSIONS

• >= 5.19.0

DESCRIPTION

Summary

A path traversal vulnerability inside of LocalMode's open_local_file method allows an authenticated user with adequate permissions to download any .txt via the ScreensController#show on the web server COSMOS is running on (depending on the file permissions).

Note: This CVE affects all OpenC3 COSMOS Editions

Impact

This issue may lead to Information Disclosure.

NOTE: The complete advisory with much more information is added as comment.

RELATED

• https://nvd.nist.gov/vuln/detail/CVE-2024-46977
• https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8
• https://github.com/OpenC3/cosmos/commit/a34e61aea5a465f0ab3e57d833ae7ff4cafd710b
• https://github.com/advisories/GHSA-8jxr-mccc-mwg8