VYPR
Low severityNVD Advisory· Published Oct 23, 2023· Updated Sep 17, 2024

Arbitrary file write via archive extraction (Zip Slip) vulnerability in sbt

CVE-2023-46122

Description

sbt is a build tool for Scala, Java, and others. Given a specially crafted zip or JAR file, IO.unzip allows writing of arbitrary file. This would have potential to overwrite /root/.ssh/authorized_keys. Within sbt's main code, IO.unzip is used in pullRemoteCache task and Resolvers.remote; however many projects use IO.unzip(...) directly to implement custom tasks. This vulnerability has been patched in version 1.9.7.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.scala-sbt:sbtMaven
>= 0.3.4, < 1.9.71.9.7
org.scala-sbt:io_2.12Maven
>= 1.0.0, < 1.9.71.9.7
org.scala-sbt:io_2.13Maven
>= 1.0.0, < 1.9.71.9.7
org.scala-sbt:io_3Maven
>= 1.0.0, < 1.9.71.9.7

Affected products

85

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.