ZDI-24-110: Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability
First published: Fri Feb 09 2024(Updated: )
This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The specific flaw exists within the downloadExportedChart action. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to bypass authentication on the system.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Allegro |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-24-110?
The severity of ZDI-24-110 is deemed critical due to the ability of remote attackers to bypass authentication.
How do I fix ZDI-24-110?
To fix ZDI-24-110, ensure to apply the latest security updates provided by Allegra to address the authentication bypass issue.
What systems are affected by ZDI-24-110?
ZDI-24-110 affects installations of Allegra that utilize the downloadExportedChart action.
Can ZDI-24-110 be exploited without authentication?
Yes, ZDI-24-110 can be exploited without any prior authentication by remote attackers.
Is there a permanent solution for ZDI-24-110?
The permanent solution for ZDI-24-110 involves implementing the security patches released by Allegra.
- collector/zdi-published
- source/ZDI
- alias/ZDI-CAN-22361
- agent/last-modified-date
- agent/title
- agent/type
- agent/first-publish-date
- agent/severity
- agent/references
- agent/description
- agent/softwarecombine
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/zdi-advisory
- alias/ZDI-24-110
- alias/CVE-2023-51639
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/allegra
- canonical/allegro