CVE-2020-16136

Source
https://cve.org/CVERecord?id=CVE-2020-16136
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-16136.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-16136
Aliases
  • GHSA-r8pp-42wr-2gc4
Published
2020-07-31T16:15:11.120Z
Modified
2026-07-09T01:30:22.370267Z
Severity
  • 7.7 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In tgstation-server 4.4.0 and 4.4.1, an authenticated user with permission to download logs can download any file on the server machine (accessible by the owner of the server process) via directory traversal ../ sequences in /Administration/Logs/ requests. The attacker is unable to enumerate files, however.

References

Affected packages

Git / github.com/tgstation/tgstation-server

Affected ranges

Type
GIT
Repo
https://github.com/tgstation/tgstation-server
Events
Database specific
{
    "cpe": [
        "cpe:2.3:a:tgstation13:tgstation-server:4.4.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:tgstation13:tgstation-server:4.4.1:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "4.4.0"
        },
        {
            "last_affected": "4.4.0"
        },
        {
            "introduced": "4.4.1"
        },
        {
            "last_affected": "4.4.1"
        }
    ],
    "source": "CPE_STRING"
}

Affected versions

4.*
4.4.0
4.4.1
tgstation-server-v4.*
tgstation-server-v4.4.0
tgstation-server-v4.4.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-16136.json"