Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Permissions check bypass in Seafile
Vulnerability Description
Seafile is an open source cloud storage system. A sync token is used in Seafile file syncing protocol to authorize access to library data. To improve performance, the token is cached in memory in seaf-server. Upon receiving a token from sync client or SeaDrive client, the server checks whether the token exist in the cache. However, if the token exists in cache, the server doesn't check whether it's associated with the specific library in the URL. This vulnerability makes it possible to use any valid sync token to access data from any **known** library. Note that the attacker has to first find out the ID of a library which it has no access to. The library ID is a random UUID, which is not possible to be guessed. There are no workarounds for this issue.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
Seafile 安全漏洞
Vulnerability Description
海文互知网络技术 Seafile是海文互知网络技术公司的一款开源的企业云盘。该产品具有Markdown WYSIWYG编辑,Wiki,文件标签等功能。 Seafile 存在安全漏洞,该漏洞源于Seafile 文件同步协议中使用同步令牌来授权访问库数据。为了提高性能,令牌缓存在 seaf-server 的内存中。从同步客户端或 SeaDrive 客户端收到令牌后,服务器会检查该令牌是否存在于缓存中。但是,如果令牌存在于缓存中,服务器不会检查它是否与 URL 中的特定库相关联。
CVSS Information
N/A
Vulnerability Type
N/A