Mastodon vulnerable to arbitrary file creation through media attachments

Mastodon is a free, open-source social network server based on ActivityPub. Starting in version 3.5.0 and prior to versions 3.5.9, 4.0.5, and 4.1.3, attackers using carefully crafted media files can cause Mastodon's media processing code to create arbitrary files at any location. This allows attackers to create and overwrite any file Mastodon has access to, allowing Denial of Service and arbitrary Remote Code Execution. Versions 3.5.9, 4.0.5, and 4.1.3 contain a patch for this issue.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

对路径名的限制不恰当(路径遍历)

Mastodon 路径遍历漏洞

Mastodon是一款基于ActivityPub的开源社交网络服务器。 Mastodon存在路径遍历漏洞，该漏洞源于允许攻击者创建和覆盖Mastodon有权访问的任何文件，并导致拒绝服务和远程代码执行。

N/A

N/A