Weaviate OSS Path Traversal Vulnerability in Backup Restoration Process

A path traversal vulnerability has been identified in Weaviate OSS versions prior to 1.33.4. This vulnerability allows an attacker with permission to insert data into the database to manipulate entry names with absolute paths or parent directory traversal sequences. When a backup is restored, this could lead to the creation or overwriting of files in arbitrary locations within the application's privilege scope.

Impact

Exploitation of this vulnerability allows for arbitrary file creation or overwriting within Weaviate's privilege scope, potentially leading to unauthorized data manipulation or application disruption.

Remediation

Users can update to Weaviate version 1.33.4 or later to address this vulnerability. For those using Weaviate Cloud or Weaviate Enterprise Support, the update has been applied automatically. Weaviate Backup modules can be disabled by removing any backup-related entries from the 'enabled_modules' flag.