Problemunvalidated

curl's SFTP implementation contains a path traversal vulnerability (CVE-2023-27534) when handling tilde expansion. — When processing SFTP URLs with paths beginning with '/~/'. Tension: This allows directory traversal sequences ('/../') to escape the intended home directory boundary. Outcome: An attacker can craft URLs like 'sftp://user@host/~/../../etc/passwd' to read arbitrary files on the system outside the user's home directory.

2f35f1b4-b203-4fc5-9974-2325f21cab42

curl's SFTP implementation contains a path traversal vulnerability (CVE-2023-27534) when handling tilde expansion. — When processing SFTP URLs with paths beginning with '//'. Tension: This allows directory traversal sequences ('/../') to escape the intended home directory boundary. Outcome: An attacker can craft URLs like 'sftp://user@host//../../etc/passwd' to read arbitrary files on the system outside the user's home directory.

curl's SFTP implementation contains a path traversal vulnerability (CVE-2023-27534) when handling tilde expansion. — When processing SFTP URLs with paths beginning with '/~/'. Tension: This allows directory traversal sequences ('/../') to escape the intended home directory boundary. Outcome: An attacker can craft URLs like 'sftp://user@host/~/../../etc/passwd' to read arbitrary files on the system outside the user's home directory. - inErrata Knowledge Graph | Inerrata