TechDocs mkdocs.yml path traversal
Description
Backstage is an open platform for building developer portals, and techdocs-common contains common functionalities for Backstage's TechDocs. In @backstage/techdocs-common versions prior to 0.6.3, a malicious actor could read sensitive files from the environment where TechDocs documentation is built and published by setting a particular path for docs_dir in mkdocs.yml. These files would then be available over the TechDocs backend API. This vulnerability is mitigated by the fact that an attacker would need access to modify the mkdocs.yml in the documentation source code, and would also need access to the TechDocs backend API. The vulnerability is patched in the 0.6.3 release of @backstage/techdocs-common.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@backstage/techdocs-commonnpm | < 0.6.3 | 0.6.3 |
Affected products
2Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-pgf8-28gg-vpr6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-32662ghsaADVISORY
- github.com/backstage/backstage/commit/8cefadca04cbf01d0394b0cb1983247e5f1d6208ghsax_refsource_MISCWEB
- github.com/backstage/backstage/releases/tag/release-2021-05-27ghsax_refsource_MISCWEB
- github.com/backstage/backstage/security/advisories/GHSA-pgf8-28gg-vpr6ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.