Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-26150

HIGH
Published 2024-02-23T15:46:35.731Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-26150. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
8.7
/10
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.003
probability
of exploitation in the wild

There is a 0.3% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.513
Higher than 51.3% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
HIGH
Availability
NONE

Description

`@backstage/backend-common` is a common functionality library for backends for Backstage, an open platform for building developer portals. In `@backstage/backend-common` prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the `resolveSafeChildPath` utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in `@backstage/backend-common` versions 0.21.1, 0.20.2, and 0.19.10.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

backstage

backstage

Affected Versions:

= 0.21.0 < 0.19.10 >= 0.20.0, < 0.20.2

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed HIGH

`@backstage/backend-common` vulnerable to path traversal through symlinks

GHSA-2fc9-xpp8-2g9h

Advisory Details

### Impact Paths checks with the `resolveSafeChildPath` utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. ### Patches Patched in `@backstage/backend-common` version `0.21.1`. Patched in `@backstage/backend-common` version `0.20.2`. Patched in `@backstage/backend-common` version `0.19.10`. ### For more information If you have any questions or comments about this advisory: - Open an issue in the [Backstage repository](https://github.com/backstage/backstage) - Visit our Discord, linked to in [Backstage README](https://github.com/backstage/backstage)

Affected Packages

npm @backstage/backend-common
ECOSYSTEM: ≥0.21.0 <0.21.1
npm @backstage/backend-common
ECOSYSTEM: ≥0 <0.19.10
npm @backstage/backend-common
ECOSYSTEM: ≥0.20.0 <0.20.2

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

References

WEB https://github.com/backstage/backstage/security/advisories/GHSA-2fc9-xpp8-2g9h
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-26150
WEB https://github.com/backstage/backstage/commit/1ad2b1b61ebb430051f7d804b0cc7ebfe7922b6f
WEB https://github.com/backstage/backstage/commit/78f892b3a84d63de2ba167928f171154c447b717
WEB https://github.com/backstage/backstage/commit/edf65d7d31e027599c2415f597d085ee84807871
PACKAGE https://github.com/backstage/backstage

Advisory provided by GitHub Security Advisory Database. Published: February 23, 2024, Modified: February 23, 2024

References

https://github.com/backstage/backstage/security/advisories/GHSA-2fc9-xpp8-2g9h
https://github.com/backstage/backstage/commit/1ad2b1b61ebb430051f7d804b0cc7ebfe7922b6f
https://github.com/backstage/backstage/commit/78f892b3a84d63de2ba167928f171154c447b717
https://github.com/backstage/backstage/commit/edf65d7d31e027599c2415f597d085ee84807871
Published: 2024-02-23T15:46:35.731Z
Last Modified: 2024-08-01T23:59:32.589Z
Copied to clipboard!