What is CVE-2024-48914?

CVE-2024-48914 is a critical-severity vulnerability in Vendure-ecommerce Vendure, classified under Path Traversal. CVSS score: 9.1/10. Published 2024-10-15.

How severe is CVE-2024-48914?

Critical severity. CVSS v3 base score is 9.1 out of 10.

Is CVE-2024-48914 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Vendure-ecommerce Vendure

CVE-2024-48914

Vendure is an open-source headless commerce platform. Prior to versions 3.0.5 and 2.3.3, a vulnerability in Vendure's asset server plugin allows an attacker to craft a request which is able to traverse the server file system and retrieve t…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.925 (99.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H.

Affected products

Vendure-ecommerce Vendure — versions < 2.3.3, >= 3.0.0, < 3.0.5

Weakness classification (CWE)

Public proof-of-concept exploits

References

https://github.com/vendure-ecommerce/vendure/security/advisories/GHSA-r9mq-3c9r-fmjq (x_refsource_CONFIRM)
https://github.com/vendure-ecommerce/vendure/commit/e2ee0c43159b3d13b51b78654481094fdd4850c5 (x_refsource_MISC)
https://github.com/vendure-ecommerce/vendure/commit/e4b58af6822d38a9c92a1d8573e19288b8edaa1c (x_refsource_MISC)
https://github.com/vendure-ecommerce/vendure/blob/801980e8f599c28c5059657a9d85dd03e3827992/packages/asset-server-plugin/src/plugin.ts#L352-L358 (x_refsource_MISC)

Frequently asked questions

What is CVE-2024-48914?: CVE-2024-48914 is a critical-severity vulnerability in Vendure-ecommerce Vendure, classified under Path Traversal. CVSS score: 9.1/10. Published 2024-10-15.
How severe is CVE-2024-48914?: Critical severity. CVSS v3 base score is 9.1 out of 10.
Is CVE-2024-48914 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.