CyberArk Conjur Path Traversal and File Disclosure Vulnerability
Vulnerability
A path traversal vulnerability allowing file disclosure has been identified in CyberArk Conjur OSS versions prior to 1.22.1 and in Secrets Manager, Self-Hosted (formerly Conjur Enterprise) versions prior to 13.5.1 and 13.6.1. This vulnerability allows an authenticated attacker who can load policy to use the policy YAML parser to reference files on the Secrets Manager or Conjur server. These references could be exploited to gain insights into the folder structure of the server or to include files from the server in the YAML being processed, potentially leading to unauthorized access or manipulation of sensitive information.
Impact
Exploitation of this vulnerability could result in unauthorized file access and disclosure of sensitive information, as the vulnerability allows for reconnaissance of the server's folder structure and inclusion of server files in processed YAML.
Remediation
Users can upgrade to CyberArk Conjur OSS version 1.22.1 or Secrets Manager, Self-Hosted versions 13.5.1 or 13.6.1 to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.