CVE-2024-26261

The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96	Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html	Third Party Advisory
https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96	Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hgiga:oaklouds-organization-2.0::::::::
	cpe:2.3:a:hgiga:oaklouds-organization-3.0::::::::
	cpe:2.3:a:hgiga:oaklouds-webbase-2.0::::::::
	cpe:2.3:a:hgiga:oaklouds-webbase-3.0::::::::

History

23 Jan 2025, 19:56

Type	Values Removed	Values Added
First Time		Hgiga oaklouds-organization-3.0 Hgiga oaklouds-webbase-2.0 Hgiga oaklouds-organization-2.0 Hgiga oaklouds-webbase-3.0 Hgiga
CPE		cpe:2.3:a:hgiga:oaklouds-webbase-3.0:::::::: cpe:2.3:a:hgiga:oaklouds-organization-2.0:::::::: cpe:2.3:a:hgiga:oaklouds-organization-3.0:::::::: cpe:2.3:a:hgiga:oaklouds-webbase-2.0::::::::
References	~~() https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96 -~~	() https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96 - Third Party Advisory
References	~~() https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html -~~	() https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html - Third Party Advisory

Information

Published : 2024-02-15 03:15

Updated : 2025-01-23 19:56

NVD link : CVE-2024-26261

Mitre link : CVE-2024-26261

CVE.ORG link : CVE-2024-26261

JSON object : View

Products Affected

hgiga

oaklouds-organization-3.0
oaklouds-webbase-3.0
oaklouds-organization-2.0
oaklouds-webbase-2.0

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2024-26261", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "twcert@cert.org.tw", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-02-15T03:15:35.083", "references": [{"url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96", "tags": ["Third Party Advisory"], "source": "twcert@cert.org.tw"}, {"url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html", "tags": ["Third Party Advisory"], "source": "twcert@cert.org.tw"}, {"url": "https://www.chtsecurity.com/news/e456f679-9091-4de4-8f78-9262d20d6a96", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.twcert.org.tw/tw/cp-132-7674-bdb40-1.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "twcert@cert.org.tw", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific request parameters, allowing them to download the file without login. Furthermore, the file will be deleted after being downloaded."}, {"lang": "es", "value": "La funcionalidad para descargar archivos en ciertos m\u00f3dulos de HGiga OAKlouds contiene una vulnerabilidad de lectura y eliminaci\u00f3n arbitraria de archivos. Los atacantes pueden poner la ruta del archivo en par\u00e1metros de solicitud espec\u00edficos, lo que les permite descargar el archivo sin iniciar sesi\u00f3n. Adem\u00e1s, el archivo se eliminar\u00e1 despu\u00e9s de descargarlo."}], "lastModified": "2025-01-23T19:56:10.270", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hgiga:oaklouds-organization-2.0:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BDDE14F-3BD2-4AF2-AAFF-BF238F360860", "versionEndExcluding": "188"}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-organization-3.0:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20A6F111-728D-45DE-B7EC-1C3BC9542F78", "versionEndExcluding": "188"}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-webbase-2.0:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C52C10C8-08A1-4CDC-8309-C3F874EBEFF6", "versionEndExcluding": "1051"}, {"criteria": "cpe:2.3:a:hgiga:oaklouds-webbase-3.0:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B80523EB-F1BE-4F09-9613-F7CE2F556056", "versionEndExcluding": "1051"}], "operator": "OR"}]}], "sourceIdentifier": "twcert@cert.org.tw"}