Vulnerability from drupal
Published
2023-05-03 15:44
Modified
2023-08-10 13:58
Summary
Details

S3 File System (s3fs) provides an additional file system to your Drupal site, which stores files in Amazon's Simple Storage Service (S3) or any other S3-compatible storage service.

This module may fail to validate that a file being requested to be moved to storage was uploaded during the same web request, possibly allowing an attacker to move files that should normally be inaccessible to them.

This vulnerability is mitigated by the fact that another vulnerability must already exist outside of s3fs.

Credits
Conrad Lara www.drupal.org/user/1790054
To clipboard 

{
  "affected": [
    {
      "database_specific": {
        "affected_versions": "\u003c3.2.0"
      },
      "package": {
        "ecosystem": "Packagist:https://packages.drupal.org/8",
        "name": "drupal/s3fs"
      },
      "ranges": [
        {
          "database_specific": {
            "constraint": "\u003c3.2.0"
          },
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.2.0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "severity": []
    }
  ],
  "aliases": [],
  "credits": [
    {
      "contact": [
        "https://www.drupal.org/user/1790054"
      ],
      "name": "Conrad Lara"
    }
  ],
  "details": "S3 File System (s3fs) provides an additional file system to your Drupal site, which stores files in Amazon\u0027s Simple Storage Service (S3) or any other S3-compatible storage service.\n\nThis module may fail to validate that a file being requested to be moved to storage was uploaded during the same web request, possibly allowing an attacker to move files that should normally be inaccessible to them.\n\nThis vulnerability is mitigated by the fact that another vulnerability must already exist outside of s3fs.",
  "id": "DRUPAL-CONTRIB-2023-014",
  "modified": "2023-08-10T13:58:54.000Z",
  "published": "2023-05-03T15:44:12.000Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://www.drupal.org/sa-contrib-2023-014"
    }
  ],
  "schema_version": "1.7.0"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.