VariantIncomplete

CWE-57Path Equivalence: 'fakedir/../realdir/filename'

Category: other

Description

The product contains protection mechanisms to restrict access to 'realdir/filename', but it constructs pathnames using external input in the form of 'fakedir/../realdir/filename' that are not handled by those mechanisms. This allows attackers to perform unauthorized actions against the targeted file.

Common consequences· 1

  • Confidentiality / Integrity — Read Files or Directories, Modify Files or Directories

Potential mitigations· 1

  • [Implementation]Inputs should be decoded and canonicalized to the application's current internal representation before being validated (CWE-180). Make sure that the application does not decode the same input twice (CWE-174). Such errors could be used to bypass allowlist validation schemes by introducing dangerous inputs after they have been checked.

References

  1. https://cwe.mitre.org/data/definitions/57.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Path Traversal: 'dir/../../filename'
CWE
Path Traversal: '/dir/../filename'
CWE
Path Traversal: '/../filedir'
CWE
Path Traversal: '../filedir'
CWE
Path Traversal: 'dir\..\..\filename'
CWE
Path Equivalence: 'file...name' (Multiple Internal Dot)
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.