Volerion logoVolerion
Volerion logoVolerion

ServiceStack Remote Code Execution Vulnerability via Directory Traversal

Vulnerability

A directory traversal vulnerability allowing remote code execution has been identified in ServiceStack versions through 8.6. The issue arises in the FindType method, where user-supplied paths are not properly validated before being used in file operations. This lack of validation creates an opportunity for attackers to execute arbitrary code within the context of the current process.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system.

Reproduction

To reproduce this vulnerability, an attacker must interact with the ServiceStack library in a way that triggers the FindType method. This can be done by supplying a crafted path that exploits the directory traversal flaw, bypassing any intended restrictions. Once the path is processed by the FindType method, the attacker can execute arbitrary code on the server.

Remediation

Users are advised to update to ServiceStack version 8.7 or later, where this vulnerability has been addressed.

Added: Jun 25, 2025, 7:13 PM
Updated: Jun 25, 2025, 7:13 PM

Vulnerability Rating

Custom Algorithm
spread
3.4
impact
10.0
exploitability
7.9
remediation
7.7
relevance
0.2
threat
1.6
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.