OpenHarness Path Traversal Vulnerability Allowing Arbitrary File Read
Vulnerability
A path traversal vulnerability has been identified in OpenHarness versions prior to commit dd1d235. This vulnerability allows remote gateway users with chat access to read arbitrary files by exploiting the /memory show slash command. Attackers can manipulate the path input to escape the project memory directory, accessing sensitive files available to the OpenHarness process without proper filesystem containment validation.
Impact
Exploitation of this vulnerability could lead to unauthorized access and disclosure of sensitive files on the system.
Reproduction
To reproduce this vulnerability, send a command to the OpenHarness gateway that includes path traversal sequences in the /memory show command. The command will bypass the application's directory restrictions and access files outside the intended directory.
Remediation
Users can update to the latest version of OpenHarness, which includes a patch for this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.