Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RustFS Snowball Auto-Extract: Path Traversal allows cross-bucket object injection
Vulnerability Description
RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.4, authenticated users with only PutObject permission on their own bucket can exploit a path traversal vulnerability in the Snowball auto-extract feature to write arbitrary objects into other users' buckets, completely breaking multi-tenant isolation. The vulnerability chains three flaws: No ../ sanitization in tar entry key normalization; IAM wildcard matching uses raw (uncleaned) paths; and Filesystem path cleaning resolves ../ across bucket boundaries.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
RustFS 路径遍历漏洞
Vulnerability Description
rustfs是RustFS组织开源的一个高性能对象存储系统。 RustFS 1.0.0-beta.4版本存在路径遍历漏洞,该漏洞源于Snowball自动提取功能中存在路径遍历问题,涉及tar条目键规范化中缺乏../清理、IAM通配符匹配使用原始路径以及文件系统路径清理跨存储桶边界解析../,可能导致已认证用户将任意对象写入其他用户的存储桶。
CVSS Information
N/A
Vulnerability Type
N/A