CWE-552
AllowedFiles or Directories Accessible to External Parties
Abstraction: Base · Status: Draft
The product makes files or directories accessible to unauthorized actors, even though they should not be.
669 vulnerabilities reference this CWE, most recent first.
GHSA-X5HH-R5WR-8MH7
Vulnerability from github – Published: 2025-01-18 18:30 – Updated: 2025-01-18 18:30IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain sensitive information from improper access restrictions that could aid in further attacks against the system.
{
"affected": [],
"aliases": [
"CVE-2024-47106"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-01-18T16:15:37Z",
"severity": "MODERATE"
},
"details": "IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain sensitive information from improper access restrictions that could aid in further attacks against the system.",
"id": "GHSA-x5hh-r5wr-8mh7",
"modified": "2025-01-18T18:30:46Z",
"published": "2025-01-18T18:30:46Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47106"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/pages/node/7178507"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-X64Q-XMQV-CPVW
Vulnerability from github – Published: 2022-03-16 00:00 – Updated: 2022-03-24 00:00CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function.
{
"affected": [],
"aliases": [
"CVE-2022-25497"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-03-15T18:15:00Z",
"severity": "MODERATE"
},
"details": "CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function.",
"id": "GHSA-x64q-xmqv-cpvw",
"modified": "2022-03-24T00:00:42Z",
"published": "2022-03-16T00:00:39Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25497"
},
{
"type": "WEB",
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/28"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-X749-JJP7-3HJP
Vulnerability from github – Published: 2024-03-05 12:30 – Updated: 2025-04-09 21:30A CWE-552 “Files or Directories Accessible to External Parties” vulnerability in the embedded Chromium browser allows a physical attacker to arbitrarily download/upload files to/from the file system, with unspecified impacts to the confidentiality, integrity, and availability of the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.
{
"affected": [],
"aliases": [
"CVE-2023-45594"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-03-05T12:15:46Z",
"severity": "MODERATE"
},
"details": "A CWE-552 \u201cFiles or Directories Accessible to External Parties\u201d vulnerability in the embedded Chromium browser allows a physical attacker to arbitrarily download/upload files to/from the file system, with unspecified impacts to the confidentiality, integrity, and availability of the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.",
"id": "GHSA-x749-jjp7-3hjp",
"modified": "2025-04-09T21:30:59Z",
"published": "2024-03-05T12:30:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45594"
},
{
"type": "WEB",
"url": "https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-45594"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-X8QX-HQ9R-9FVG
Vulnerability from github – Published: 2022-10-28 19:00 – Updated: 2022-11-01 19:00Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery.
{
"affected": [],
"aliases": [
"CVE-2022-37424"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-10-28T16:15:00Z",
"severity": "MODERATE"
},
"details": "Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery.",
"id": "GHSA-x8qx-hq9r-9fvg",
"modified": "2022-11-01T19:00:29Z",
"published": "2022-10-28T19:00:38Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-37424"
},
{
"type": "WEB",
"url": "https://opennebula.io/opennebula-6-4-2-ee-lts-maintenance-release-is-available"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-X8WC-VWC8-W26V
Vulnerability from github – Published: 2022-05-24 17:49 – Updated: 2022-05-24 17:49A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause system instability if important system files are overwritten. This vulnerability is due to insufficient validation of user input for the file path in a specific CLI command. An attacker could exploit this vulnerability by logging in to a targeted device and issuing a specific CLI command with crafted user input. A successful exploit could allow the attacker to overwrite arbitrary files on the file system of the affected device. The attacker would need valid user credentials on the device.
{
"affected": [],
"aliases": [
"CVE-2021-1256"
],
"database_specific": {
"cwe_ids": [
"CWE-22",
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-04-29T18:15:00Z",
"severity": "MODERATE"
},
"details": "A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause system instability if important system files are overwritten. This vulnerability is due to insufficient validation of user input for the file path in a specific CLI command. An attacker could exploit this vulnerability by logging in to a targeted device and issuing a specific CLI command with crafted user input. A successful exploit could allow the attacker to overwrite arbitrary files on the file system of the affected device. The attacker would need valid user credentials on the device.",
"id": "GHSA-x8wc-vwc8-w26v",
"modified": "2022-05-24T17:49:08Z",
"published": "2022-05-24T17:49:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-1256"
},
{
"type": "WEB",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10382"
},
{
"type": "WEB",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-file-overwrite-XknRjGdB"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-X993-F873-7MGW
Vulnerability from github – Published: 2024-07-10 09:30 – Updated: 2024-07-10 09:30An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.
{
"affected": [],
"aliases": [
"CVE-2024-6421"
],
"database_specific": {
"cwe_ids": [
"CWE-200",
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-07-10T08:15:11Z",
"severity": "HIGH"
},
"details": "An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.",
"id": "GHSA-x993-f873-7mgw",
"modified": "2024-07-10T09:30:41Z",
"published": "2024-07-10T09:30:41Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6421"
},
{
"type": "WEB",
"url": "https://cert.vde.com/en/advisories/VDE-2024-038"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-XC4W-62F4-XJVV
Vulnerability from github – Published: 2024-05-03 03:30 – Updated: 2024-05-03 03:30Softing Secure Integration Server OPC UA Gateway Directory Creation Vulnerability. This vulnerability allows remote attackers to create directories on affected installations of Softing Secure Integration Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
The specific flaw exists within the handling of FileDirectory OPC UA Objects. The issue results from allowing unauthorized access to the filesystem. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root. Was ZDI-CAN-20548.
{
"affected": [],
"aliases": [
"CVE-2023-39479"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-05-03T03:15:14Z",
"severity": "MODERATE"
},
"details": "Softing Secure Integration Server OPC UA Gateway Directory Creation Vulnerability. This vulnerability allows remote attackers to create directories on affected installations of Softing Secure Integration Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.\n\nThe specific flaw exists within the handling of FileDirectory OPC UA Objects. The issue results from allowing unauthorized access to the filesystem. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root. Was ZDI-CAN-20548.",
"id": "GHSA-xc4w-62f4-xjvv",
"modified": "2024-05-03T03:30:56Z",
"published": "2024-05-03T03:30:56Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39479"
},
{
"type": "WEB",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-23-1061"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-XCFP-C436-MM2R
Vulnerability from github – Published: 2025-03-16 06:30 – Updated: 2025-03-17 21:30The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.
{
"affected": [],
"aliases": [
"CVE-2024-13126"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-03-16T06:15:11Z",
"severity": "MODERATE"
},
"details": "The Download Manager WordPress plugin before 3.3.07 doesn\u0027t prevent directory listing on web servers that don\u0027t use htaccess, allowing unauthorized access of files.",
"id": "GHSA-xcfp-c436-mm2r",
"modified": "2025-03-17T21:30:33Z",
"published": "2025-03-16T06:30:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-13126"
},
{
"type": "WEB",
"url": "https://wpscan.com/vulnerability/c2c69a44-4ecc-41d1-a10c-cfe9c875b803"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
"type": "CVSS_V3"
}
]
}
GHSA-XCH7-QCCV-PW4V
Vulnerability from github – Published: 2022-05-13 00:00 – Updated: 2022-05-21 00:00SolarView Compact ver.6.00 was discovered to contain a local file disclosure via /html/Solar_Ftp.php.
{
"affected": [],
"aliases": [
"CVE-2022-29302"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-05-12T16:15:00Z",
"severity": "MODERATE"
},
"details": "SolarView Compact ver.6.00 was discovered to contain a local file disclosure via /html/Solar_Ftp.php.",
"id": "GHSA-xch7-qccv-pw4v",
"modified": "2022-05-21T00:00:41Z",
"published": "2022-05-13T00:00:53Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29302"
},
{
"type": "WEB",
"url": "https://drive.google.com/file/d/1Bfyk1Nx51HbFGYuDNFKoDxUrloEj-Rzx/view?usp=sharing"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-XFP7-WVX8-2CW8
Vulnerability from github – Published: 2022-01-11 00:00 – Updated: 2022-01-15 00:03Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode.
{
"affected": [],
"aliases": [
"CVE-2022-22268"
],
"database_specific": {
"cwe_ids": [
"CWE-552"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-01-10T14:12:00Z",
"severity": "MODERATE"
},
"details": "Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode.",
"id": "GHSA-xfp7-wvx8-2cw8",
"modified": "2022-01-15T00:03:21Z",
"published": "2022-01-11T00:00:56Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22268"
},
{
"type": "WEB",
"url": "https://security.samsungmobile.com/securityUpdate.smsb?year=2022\u0026month=1"
}
],
"schema_version": "1.4.0",
"severity": []
}
Mitigation
When storing data in the cloud (e.g., S3 buckets, Azure blobs, Google Cloud Storage, etc.), use the provider's controls to disable public access.
CAPEC-150: Collect Data from Common Resource Locations
An adversary exploits well-known locations for resources for the purposes of undermining the security of the target. In many, if not most systems, files and resources are organized in a default tree structure. This can be useful for adversaries because they often know where to look for resources or files that are necessary for attacks. Even when the precise location of a targeted resource may not be known, naming conventions may indicate a small area of the target machine's file tree where the resources are typically located. For example, configuration files are normally stored in the /etc director on Unix systems. Adversaries can take advantage of this to commit other types of attacks.
CAPEC-639: Probe System Files
An adversary obtains unauthorized information due to improperly protected files. If an application stores sensitive information in a file that is not protected by proper access control, then an adversary can access the file and search for sensitive information.