CVE-2024-43799

Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0.

CVSS v3 4.7 MEDIUM

4.7^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.6 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35	Patch
https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:send_project:send:*:*:*:*:*:node.js:*:*

History

20 Sep 2024, 16:57

Type	Values Removed	Values Added
Summary		(es) Send es una librería para transmitir archivos desde el sistema de archivos como una respuesta http. Send pasa la entrada de usuario no confiable a SendStream.redirect(), que ejecuta código no confiable. Este problema se solucionó en send 0.19.0.
References	~~() https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35 -~~	() https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35 - Patch
References	~~() https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg -~~	() https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg - Vendor Advisory
First Time		Send Project Send Project send
CVSS	v2 : ~~unknown~~ v3 : ~~5.0~~	v2 : unknown v3 : 4.7
CPE		cpe:2.3:a:send_project:send::::::node.js::*

10 Sep 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-10 15:15

Updated : 2024-09-20 16:57

NVD link : CVE-2024-43799

Mitre link : CVE-2024-43799

CVE.ORG link : CVE-2024-43799

JSON object : View

Products Affected

send_project

send

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2024-43799", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 1.6}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.0, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 1.6}]}, "published": "2024-09-10T15:15:17.727", "references": [{"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0."}, {"lang": "es", "value": "Send es una librer\u00eda para transmitir archivos desde el sistema de archivos como una respuesta http. Send pasa la entrada de usuario no confiable a SendStream.redirect(), que ejecuta c\u00f3digo no confiable. Este problema se solucion\u00f3 en send 0.19.0."}], "lastModified": "2024-09-20T16:57:14.687", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:send_project:send:*:*:*:*:*:node.js:*:*", "vulnerable": true, "matchCriteriaId": "2CA928EE-A0D3-44E9-B115-6FC2BF830623", "versionEndExcluding": "0.19.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}