5.3

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2024-37169

GHSA ID

GHSA-665w-mwrr-77q3

EPSS Score

0.58284%

CWE

CWE-22

Published

6/5/2024

Updated

6/11/2024

KEV Status

Technology

JavaScript

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-37169

CVE-2024-37169: Arbitrary file read via Playwright's screenshot feature exploiting file wrapper

Impact

All users of url-to-png. Please see https://github.com/jasonraimondi/url-to-png/issues/47

Patches

v2.0.3 requires input url to be of protocol http or https

Workarounds

Requires upgrade.

References

https://github.com/jasonraimondi/url-to-png/issues/47
https://github.com/user-attachments/files/15536336/Arbitrary.File.Read.via.Playwright.s.Screenshot.Feature.Exploiting.File.Wrapper.pdf

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2024-37169

CVE-2024-37169:

5.3

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2024-37169

GHSA ID

GHSA-665w-mwrr-77q3

EPSS Score

0.58284%

CWE

CWE-22

Published

6/5/2024

Updated

6/11/2024

KEV Status

Technology

JavaScript

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@jmondi/url-to-png	npm	< 2.0.3	2.0.3

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from two key points: 1) The zodStringUrl validation in schema.ts lacked protocol restrictions, allowing 'file://' URIs. 2) The middleware propagated these invalid URLs to Playwright. The commit fixed both by adding protocol validation in schema.ts and improving error messaging in the middleware. The tests added for file:// URLs confirm these were the attack vectors. Both components directly handled the untrusted input without proper sanitization pre-patch.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

5.3

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2024-37169: Arbitrary file read via Playwright's screenshot feature exploiting file wrapper

Impact

Patches

Workarounds

References

CVE-2024-37169:

5.3

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

5.3

5.3

Basic Information

Basic Information

CVE-2024-37169: Arbitrary file read via Playwright's screenshot feature exploiting file wrapper

Impact

Patches

Workarounds

References

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI