漏洞标题
charm 容易被服务器端请求伪造(SSRF)攻击所利用
漏洞描述信息
Charm容易受到服务器端请求伪造(SSRF)的攻击
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Charm vulnerable to server-side request forgery (SSRF)
漏洞描述信息
A vulnerability in which attackers could forge HTTP requests to manipulate the `charm` data directory to access or delete anything on the server. This has been patched and is available in release [v0.12.1](https://github.com/charmbracelet/charm/releases/tag/v0.12.1). We recommend that all users running self-hosted `charm` instances update immediately. This vulnerability was found in-house and we haven't been notified of any potential exploiters. ### Additional notes * Encrypted user data uploaded to the Charm server is safe as Charm servers cannot decrypt user data. This includes filenames, paths, and all key-value data. * Users running the official Charm [Docker images](https://github.com/charmbracelet/charm/blob/main/docker.md) are at minimal risk because the exploit is limited to the containerized filesystem.
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
漏洞类别
服务端请求伪造(SSRF)
漏洞标题
Charm 代码问题漏洞
漏洞描述信息
Charm是Charm的一组用于快速构建CLI程序的工具。 Charm 存在代码问题漏洞。攻击者利用该漏洞伪造HTTP请求,从而操纵 Charm 数据目录以访问或删除服务器上任何文件。
CVSS信息
N/A
漏洞类别
代码问题