Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Vite: `server.fs.deny` bypass on Windows alternate paths
Vulnerability Description
Vite is a frontend tooling framework for JavaScript. Prior to 8.0.16, 7.3.5, and 6.4.3, the contents of files that are specified by server.fs.deny can be returned to the browser on Windows. Vite’s dev server denies direct access to sensitive files through server.fs.deny, including entries such as .env, .env.*, and *.{crt,pem}. However, on Windows, the deny logic does not correctly normalize NTFS ADS path forms before access checks are applied. Because of this, requests such as /.env::$DATA?raw are treated as allowed paths, while Windows resolves them to the original file's default data stream. Similar to that, Windows allows accessing a file using a different name with the 8.3 short name compatibility feature. Vite did not reject accessing files via them. This vulnerability is fixed in 8.0.16, 7.3.5, and 6.4.3.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Vite 信息泄露漏洞
Vulnerability Description
Vite是Vite团队开源的一种新型的前端构建工具。 Vite 8.0.16之前版本、7.3.5之前版本和6.4.3之前版本存在安全漏洞,该漏洞源于在Windows上NTFS ADS路径形式未正确规范化以及未拒绝通过8.3短文件名访问文件,可能导致敏感文件内容被返回给浏览器。
CVSS Information
N/A
Vulnerability Type
N/A