Miggo Logo
Miggo Vulnerability Database
CVE-2017-1000026

CVE-2017-1000026: mixlib-archive Path Traversal vulnerability

7.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2017-1000026
GHSA ID
GHSA-98wx-cw86-c97x
EPSS Score
0.42201%
CWE
CWE-22
Published
5/13/2022
Updated
3/6/2023
KEV Status
No
Technology
TechnologyRuby

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
mixlib-archiverubygems< 0.4.00.4.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insufficient path sanitization when processing tar entries. The fix in version 0.4.0 (via GitHub PR #6) added checks to ignore entries with paths attempting directory traversal. The CHANGELOG explicitly mentions addressing this by ignoring such entries, and the commit diff shows the addition of path validation logic. The function responsible for processing individual tar entries during extraction (likely extract_entry) would have been the point where this validation was missing, making it the vulnerable function.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

**** So*tw*r*'s mixli*-*r**iv* v*rsions *.*.* *n* ol**r *r* vuln*r**l* to * *ir**tory tr*v*rs*l *tt**k *llowin* *tt**k*rs to ov*rwrit* *r*itr*ry *il*s *y usin* `..` in t*r *r**iv* *ntri*s

Reasoning

T** vuln*r**ility st*ms *rom insu**i*i*nt p*t* s*nitiz*tion w**n pro**ssin* t*r *ntri*s. T** *ix in v*rsion *.*.* (vi* *it*u* PR #*) ***** ****ks to i*nor* *ntri*s wit* p*t*s *tt*mptin* *ir**tory tr*v*rs*l. T** ***N**LO* *xpli*itly m*ntions ***r*ssin