CVE-2021-44315

Vulnerability

In Bus Pass Management System v1.0, the web server has directory listing enabled. This misconfiguration exposes the directory structure and allows any user to browse the contents of directories that contain sensitive files, such as configuration files, user data, or backup archives. The affected version is v1.0 as described in the advisory [1][2].

Exploitation

An attacker with network access to the web server can exploit this vulnerability by simply navigating to directories that should not be publicly accessible. No authentication or special privileges are required. For example, accessing a URL like http://target/directory/ will display a list of files in that directory, which the attacker can then download or view directly [1][2].

Impact

Successful exploitation leads to information disclosure. An attacker can view and download sensitive files, including those containing user credentials, database connection strings, or other confidential data. This can compromise the confidentiality of the application and its users, potentially leading to further attacks such as credential theft or privilege escalation [1][2].

Mitigation

As of the publication date (2021-12-16), no official patch or fixed version has been released for Bus Pass Management System v1.0. The recommended mitigation is to disable directory listing on the web server by modifying the server configuration (e.g., setting Options -Indexes in Apache or disabling directory browsing in IIS). This CVE is not listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.