What is CVE-2020-17518?

CVE-2020-17518 is a vulnerability in Apache Software Foundation Flink, classified under Relative Path Traversal. Published 2021-01-05.

Is CVE-2020-17518 known to be exploited?

58 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Apache Software Foundation Flink

CVE-2020-17518

Apache Flink 1.5.1 introduced a REST handler that allows you to write an uploaded file to an arbitrary location on the local file system, through a maliciously modified HTTP HEADER. The files can be written to any location accessible by Fl…

EPSS: 0.938 (99.9th percentile) — read the EPSS interpretation.

Affected products

Apache Software Foundation Flink — versions Apache Flink 1.5.1 to 1.11.2

Weakness classification (CWE)

CWE-23 — Relative Path Traversal

Public proof-of-concept exploits

References

lists.apache.org/thread.html/rb43cd476419a48be89c1339b527a18116f23eec5b6df2b2ac… (x_refsource_MISC)
[flink-user] 20210105 [CVE-2020-17518] Apache Flink directory traversal attack: remote file writing through the REST API (mailing-list, x_refsource_MLIST)
[announce] 20210105 [CVE-2020-17518] Apache Flink directory traversal attack: remote file writing through the REST API (mailing-list, x_refsource_MLIST)
[oss-security] 20210105 [CVE-2020-17518] Apache Flink directory traversal attack: remote file writing through the REST API (mailing-list, x_refsource_MLIST)
[flink-issues] 20210106 [GitHub] [flink-web] zentol commented on a change in pull request #408: Add security page for Flink (mailing-list, x_refsource_MLIST)
[flink-dev] 20210106 [jira] [Created] (FLINK-20875) Could patch CVE-2020-17518 to version 1.10 (mailing-list, x_refsource_MLIST)
[flink-issues] 20210106 [jira] [Created] (FLINK-20875) Could patch CVE-2020-17518 to version 1.10 (mailing-list, x_refsource_MLIST)
[flink-issues] 20210107 [jira] [Updated] (FLINK-20875) Could patch CVE-2020-17518 to version 1.10 (mailing-list, x_refsource_MLIST)
[flink-issues] 20210107 [jira] [Closed] (FLINK-20875) Could patch CVE-2020-17518 to version 1.10 (mailing-list, x_refsource_MLIST)
[flink-issues] 20210107 [jira] [Commented] (FLINK-20875) Could patch CVE-2020-17518 to version 1.10 (mailing-list, x_refsource_MLIST)

Frequently asked questions

What is CVE-2020-17518?: CVE-2020-17518 is a vulnerability in Apache Software Foundation Flink, classified under Relative Path Traversal. Published 2021-01-05.
Is CVE-2020-17518 known to be exploited?: 58 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.