Apache Doris Path Traversal Vulnerability Allowing Arbitrary File Read by Admin Users

A path traversal vulnerability has been identified in Apache Doris versions 2.1.0 prior to 2.1.8 and 3.0.0 prior to 3.0.3. This vulnerability allows application administrators to read arbitrary files from the server's filesystem through the REST API. The issue arises from improper limitation of pathnames, enabling access to files or directories that should be restricted.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files on the server filesystem, potentially exposing confidential information or configuration details.

Remediation

Users are advised to upgrade to Apache Doris version 2.1.8, 3.0.3 or later, which addresses this vulnerability.