CVE-2024-46977 MEDIUM

CVE-2024-46977: OpenC3 COSMOS allows a path traversal via screen controller (`GHSL-2024-127`)

Vendor Openc3
Product cosmos
Weakness CWE-22 · Path traversal
Published October 2, 2024
Last update October 31, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. A path traversal vulnerability inside of LocalMode's open_local_file method allows an authenticated user with adequate permissions to download any .txt via the ScreensController#show on the web server COSMOS is running on (depending on the file permissions). This vulnerability is fixed in 5.19.0.

Key dates

02Disclosure timeline

October 2, 2024 CVE published
October 31, 2024 Record updated