When using the AWS S3 or GCS storage provider for TechDocs it is possible to access content in the entire storage bucket. This can leak contents of the bucket that are not intended to be accessible, as well as bypass permission checks in Backstage.

### Patches

This has been fixed in the 1.10.13 release of the `@backstage/plugin-techdocs-backend` package.

### References

If you have any questions or comments about this advisory:

Open an issue in the [Backstage repository](https://github.com/backstage/backstage)
Visit our Discord, linked to in [Backstage README](https://github.com/backstage/backstage)

Affected Packages

npm @backstage/plugin-techdocs-backend

Affected versions: 0 (fixed in 1.10.13)

Related CVEs

CVE-2024-45816

Key Information

GHSA ID

GHSA-39v3-f278-vj3g

Published

September 17, 2024 9:30 PM

Last Modified

January 3, 2025 4:12 PM

CVSS Score

7.5 /10

Primary Ecosystem

npm

Primary Package

@backstage/plugin-techdocs-backend

GitHub Reviewed

✓ Yes

Dataset

Last updated: July 12, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.