CVE-2024-26261 - Vulnerability Details - OpenCVE

The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hgiga	Oaklouds-organization-2.0 Oaklouds-organization-3.0 Oaklouds-webbase-2.0 Oaklouds-webbase-3.0

Configuration 1 [-]

OR	cpe:2.3:a:hgiga:oaklouds-organization-2.0::::::::
	cpe:2.3:a:hgiga:oaklouds-organization-3.0::::::::
	cpe:2.3:a:hgiga:oaklouds-webbase-2.0::::::::
	cpe:2.3:a:hgiga:oaklouds-webbase-3.0::::::::

No data.

References

Link	Providers
https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96
https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html

History

Thu, 23 Jan 2025 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Hgiga Hgiga oaklouds-organization-2.0 Hgiga oaklouds-organization-3.0 Hgiga oaklouds-webbase-2.0 Hgiga oaklouds-webbase-3.0
CPEs		cpe:2.3:a:hgiga:oaklouds-organization-2.0:::::::: cpe:2.3:a:hgiga:oaklouds-organization-3.0:::::::: cpe:2.3:a:hgiga:oaklouds-webbase-2.0:::::::: cpe:2.3:a:hgiga:oaklouds-webbase-3.0::::::::
Vendors & Products		Hgiga Hgiga oaklouds-organization-2.0 Hgiga oaklouds-organization-3.0 Hgiga oaklouds-webbase-2.0 Hgiga oaklouds-webbase-3.0

MITRE

Status: PUBLISHED

Assigner: twcert

Published: 2024-02-15T02:29:23.672Z

Updated: 2024-08-02T00:07:19.038Z

Reserved: 2024-02-15T01:33:48.679Z

Link: CVE-2024-26261

Vulnrichment

Updated: 2024-08-02T00:07:19.038Z

NVD

Status : Analyzed

Published: 2024-02-15T03:15:35.083

Modified: 2025-01-23T19:56:10.270

Link: CVE-2024-26261

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-26261", "assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "state": "PUBLISHED", "assignerShortName": "twcert", "dateReserved": "2024-02-15T01:33:48.679Z", "datePublished": "2024-02-15T02:29:23.672Z", "dateUpdated": "2024-08-02T00:07:19.038Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["OAKlouds-organization-2.0", "OAKlouds-organization-3.0"], "product": "OAKlouds", "vendor": "Hgiga", "versions": [{"lessThan": "188", "status": "affected", "version": "earlier", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "modules": ["OAKlouds-webbase-2.0", "OAKlouds-webbase-3.0"], "product": "OAKlouds", "vendor": "Hgiga", "versions": [{"lessThan": "1051", "status": "affected", "version": "earlier", "versionType": "custom"}]}], "datePublic": "2024-02-15T02:29:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded."}], "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded."}], "impacts": [{"capecId": "CAPEC-76", "descriptions": [{"lang": "en", "value": "CAPEC-76 Manipulating Web Input to File System Calls"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "shortName": "twcert", "dateUpdated": "2024-06-28T02:07:12.109Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html"}, {"tags": ["third-party-advisory"], "url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Update OAKlouds-organization-2.0 to 188 or later version <br>Update OAKlouds-organization-3.0 to 188 or later version <br>Update OAKlouds-webbase-2.0 to 1051 or later version <br>Update OAKlouds-webbase-3.0 to 1051 or later version"}], "value": "Update OAKlouds-organization-2.0 to 188 or later version \nUpdate OAKlouds-organization-3.0 to 188 or later version \nUpdate OAKlouds-webbase-2.0 to 1051 or later version \nUpdate OAKlouds-webbase-3.0 to 1051 or later version"}], "source": {"advisory": "TVN-202402003", "discovery": "EXTERNAL"}, "title": "Hgiga OAKlouds - Arbitrary File Read And Delete", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"affected": [{"vendor": "hgiga", "product": "oaklouds-organization", "cpes": ["cpe:2.3:a:hgiga:oaklouds-organization:2.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "188", "versionType": "custom"}]}, {"vendor": "hgiga", "product": "oaklouds-organization", "cpes": ["cpe:2.3:a:hgiga:oaklouds-organization:3.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "188", "versionType": "custom"}]}, {"vendor": "hgiga", "product": "oaklouds-webbase", "cpes": ["cpe:2.3:a:hgiga:oaklouds-webbase:2.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "1051", "versionType": "custom"}]}, {"vendor": "hgiga", "product": "oaklouds-webbase", "cpes": ["cpe:2.3:a:hgiga:oaklouds-webbase:3.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "1051", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-29T20:31:28.371408Z", "id": "CVE-2024-26261", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-29T20:36:21.839Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:07:19.038Z"}, "title": "CVE Program Container", "references": [{"tags": ["third-party-advisory", "x_transferred"], "url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html", "tags": ["third-party-advisory", "x_transferred"]}, {"url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96", "tags": ["third-party-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:07:19.038Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-26261", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-29T20:31:28.371408Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:hgiga:oaklouds-organization:2.0:*:*:*:*:*:*:*"], "vendor": "hgiga", "product": "oaklouds-organization", "versions": [{"status": "affected", "version": "0", "lessThan": "188", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:hgiga:oaklouds-organization:3.0:*:*:*:*:*:*:*"], "vendor": "hgiga", "product": "oaklouds-organization", "versions": [{"status": "affected", "version": "0", "lessThan": "188", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:hgiga:oaklouds-webbase:2.0:*:*:*:*:*:*:*"], "vendor": "hgiga", "product": "oaklouds-webbase", "versions": [{"status": "affected", "version": "0", "lessThan": "1051", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:hgiga:oaklouds-webbase:3.0:*:*:*:*:*:*:*"], "vendor": "hgiga", "product": "oaklouds-webbase", "versions": [{"status": "affected", "version": "0", "lessThan": "1051", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-29T20:36:11.844Z"}}], "cna": {"title": "Hgiga OAKlouds - Arbitrary File Read And Delete", "source": {"advisory": "TVN-202402003", "discovery": "EXTERNAL"}, "impacts": [{"capecId": "CAPEC-76", "descriptions": [{"lang": "en", "value": "CAPEC-76 Manipulating Web Input to File System Calls"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Hgiga", "modules": ["OAKlouds-organization-2.0", "OAKlouds-organization-3.0"], "product": "OAKlouds", "versions": [{"status": "affected", "version": "earlier", "lessThan": "188", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "Hgiga", "modules": ["OAKlouds-webbase-2.0", "OAKlouds-webbase-3.0"], "product": "OAKlouds", "versions": [{"status": "affected", "version": "earlier", "lessThan": "1051", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Update OAKlouds-organization-2.0 to 188 or later version \nUpdate OAKlouds-organization-3.0 to 188 or later version \nUpdate OAKlouds-webbase-2.0 to 1051 or later version \nUpdate OAKlouds-webbase-3.0 to 1051 or later version", "supportingMedia": [{"type": "text/html", "value": "Update OAKlouds-organization-2.0 to 188 or later version <br>Update OAKlouds-organization-3.0 to 188 or later version <br>Update OAKlouds-webbase-2.0 to 1051 or later version <br>Update OAKlouds-webbase-3.0 to 1051 or later version", "base64": false}]}], "datePublic": "2024-02-15T02:29:00.000Z", "references": [{"url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html", "tags": ["third-party-advisory"]}, {"url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded.", "supportingMedia": [{"type": "text/html", "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "shortName": "twcert", "dateUpdated": "2024-06-28T02:07:12.109Z"}}}, "cveMetadata": {"cveId": "CVE-2024-26261", "state": "PUBLISHED", "dateUpdated": "2024-08-02T00:07:19.038Z", "dateReserved": "2024-02-15T01:33:48.679Z", "assignerOrgId": "cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e", "datePublished": "2024-02-15T02:29:23.672Z", "assignerShortName": "twcert"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hgiga:oaklouds-organization-2.0:*:*:*:*:*:*:*:*", "matchCriteriaId": "9BDDE14F-3BD2-4AF2-AAFF-BF238F360860", "versionEndExcluding": "188", "vulnerable": true}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-organization-3.0:*:*:*:*:*:*:*:*", "matchCriteriaId": "20A6F111-728D-45DE-B7EC-1C3BC9542F78", "versionEndExcluding": "188", "vulnerable": true}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-webbase-2.0:*:*:*:*:*:*:*:*", "matchCriteriaId": "C52C10C8-08A1-4CDC-8309-C3F874EBEFF6", "versionEndExcluding": "1051", "vulnerable": true}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-webbase-3.0:*:*:*:*:*:*:*:*", "matchCriteriaId": "B80523EB-F1BE-4F09-9613-F7CE2F556056", "versionEndExcluding": "1051", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded."}, {"lang": "es", "value": "La funcionalidad para descargar archivos en ciertos m\u00f3dulos de HGiga OAKlouds contiene una vulnerabilidad de lectura y eliminaci\u00f3n arbitraria de archivos. Los atacantes pueden poner la ruta del archivo en par\u00e1metros de solicitud espec\u00edficos, lo que les permite descargar el archivo sin iniciar sesi\u00f3n. Adem\u00e1s, el archivo se eliminar\u00e1 despu\u00e9s de descargarlo."}], "id": "CVE-2024-26261", "lastModified": "2025-01-23T19:56:10.270", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "twcert@cert.org.tw", "type": "Secondary"}]}, "published": "2024-02-15T03:15:35.083", "references": [{"source": "twcert@cert.org.tw", "tags": ["Third Party Advisory"], "url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96"}, {"source": "twcert@cert.org.tw", "tags": ["Third Party Advisory"], "url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html"}], "sourceIdentifier": "twcert@cert.org.tw", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "twcert@cert.org.tw", "type": "Secondary"}]}