https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 10 Jun 2026 20:57:27 +0000 https://vulnerability.circl.lu/sighting/bda3f18c-ebbf-4807-92e1-80d3c79dc70b/export {"uuid": "bda3f18c-ebbf-4807-92e1-80d3c79dc70b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49144", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-8rpw-6cqh-2v9h", "content": "", "creation_timestamp": "2026-06-03T21:38:40.000000Z"} {"uuid": "bda3f18c-ebbf-4807-92e1-80d3c79dc70b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49144", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-8rpw-6cqh-2v9h", "content": "", "creation_timestamp": "2026-06-03T21:38:40.000000Z"} https://vulnerability.circl.lu/sighting/bda3f18c-ebbf-4807-92e1-80d3c79dc70b/export Wed, 03 Jun 2026 21:38:40 +0000 https://vulnerability.circl.lu/sighting/05eab089-41ff-49bf-a2bc-e12bb9ebb412/export {"uuid": "05eab089-41ff-49bf-a2bc-e12bb9ebb412", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49144", "type": "seen", "source": "https://gist.github.com/alon710/f7bc5351b219485c56b8d23a92985578", "content": "# CVE-2026-49144: CVE-2026-49144: Unauthenticated Arbitrary File Read via Path Traversal in BrowserStack Runner\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-03\n> **Full Report:** https://cvereports.com/reports/CVE-2026-49144\n\n## Summary\nAn unauthenticated path traversal vulnerability in BrowserStack Runner versions up to and including 0.9.5 allows remote or adjacent network attackers to read arbitrary files from the host system. The flaw exists within the local HTTP test server's fallback and patch file handlers, which fail to sanitize path inputs before passing them to file resolution APIs.\n\n## TL;DR\nBrowserStack Runner through 0.9.5 permits unauthenticated remote file disclosure due to lack of path sanitization in its internal HTTP server handlers.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22\n- **Attack Vector**: Adjacent Network (AV:A)\n- **CVSS v4 Score**: 7.1 (High)\n- **EPSS Score**: 0.00024\n- **Impact**: Arbitrary File Disclosure\n- **Exploit Status**: PoC\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- BrowserStack Runner host systems running versions <= 0.9.5\n- **BrowserStack Runner**: <= 0.9.5 (Fixed in: `None`)\n\n## Mitigation\n\n- Implement server-side path resolution sanitization ensuring requested files remain within intended directories.\n- Bind the local HTTP test server strictly to the loopback interface (127.0.0.1) instead of 0.0.0.0.\n\n**Remediation Steps:**\n1. Inspect the local test runner setup to check if 'browserstack-runner' is being used.\n2. Integrate isSafePath validation code into lib/server.js as detailed in the technical patch section.\n3. Configure local firewalls to deny external inbound connections to test server ports (default 3000).\n\n## References\n\n- [NVD - CVE-2026-49144 Detail](https://nvd.nist.gov/vuln/detail/CVE-2026-49144)\n- [GitHub Security Advisory GHSA-8rpw-6cqh-2v9h](https://github.com/browserstack/browserstack-runner/security/advisories/GHSA-8rpw-6cqh-2v9h)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/browserstack-runner-path-traversal-via-default-http-handler)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-49144) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-03T23:10:53.000000Z"} {"uuid": "05eab089-41ff-49bf-a2bc-e12bb9ebb412", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49144", "type": "seen", "source": "https://gist.github.com/alon710/f7bc5351b219485c56b8d23a92985578", "content": "# CVE-2026-49144: CVE-2026-49144: Unauthenticated Arbitrary File Read via Path Traversal in BrowserStack Runner\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-03\n> **Full Report:** https://cvereports.com/reports/CVE-2026-49144\n\n## Summary\nAn unauthenticated path traversal vulnerability in BrowserStack Runner versions up to and including 0.9.5 allows remote or adjacent network attackers to read arbitrary files from the host system. The flaw exists within the local HTTP test server's fallback and patch file handlers, which fail to sanitize path inputs before passing them to file resolution APIs.\n\n## TL;DR\nBrowserStack Runner through 0.9.5 permits unauthenticated remote file disclosure due to lack of path sanitization in its internal HTTP server handlers.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22\n- **Attack Vector**: Adjacent Network (AV:A)\n- **CVSS v4 Score**: 7.1 (High)\n- **EPSS Score**: 0.00024\n- **Impact**: Arbitrary File Disclosure\n- **Exploit Status**: PoC\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- BrowserStack Runner host systems running versions <= 0.9.5\n- **BrowserStack Runner**: <= 0.9.5 (Fixed in: `None`)\n\n## Mitigation\n\n- Implement server-side path resolution sanitization ensuring requested files remain within intended directories.\n- Bind the local HTTP test server strictly to the loopback interface (127.0.0.1) instead of 0.0.0.0.\n\n**Remediation Steps:**\n1. Inspect the local test runner setup to check if 'browserstack-runner' is being used.\n2. Integrate isSafePath validation code into lib/server.js as detailed in the technical patch section.\n3. Configure local firewalls to deny external inbound connections to test server ports (default 3000).\n\n## References\n\n- [NVD - CVE-2026-49144 Detail](https://nvd.nist.gov/vuln/detail/CVE-2026-49144)\n- [GitHub Security Advisory GHSA-8rpw-6cqh-2v9h](https://github.com/browserstack/browserstack-runner/security/advisories/GHSA-8rpw-6cqh-2v9h)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/browserstack-runner-path-traversal-via-default-http-handler)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-49144) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-03T23:10:53.000000Z"} https://vulnerability.circl.lu/sighting/05eab089-41ff-49bf-a2bc-e12bb9ebb412/export Wed, 03 Jun 2026 23:10:53 +0000 https://vulnerability.circl.lu/sighting/37698d3b-ca60-448f-bc38-132773d25c96/export {"uuid": "37698d3b-ca60-448f-bc38-132773d25c96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49144", "type": "seen", "source": "https://gist.github.com/alon710/c96f50c47f9fff8e91b22c3cc55eaa13", "content": "# CVE-2026-49144: CVE-2026-49144: Unauthenticated Arbitrary File Read via Path Traversal in BrowserStack Runner\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-03\n> **Full Report:** https://cvereports.com/reports/CVE-2026-49144\n\n## Summary\nAn unauthenticated path traversal vulnerability in BrowserStack Runner versions up to and including 0.9.5 allows remote or adjacent network attackers to read arbitrary files from the host system. The flaw exists within the local HTTP test server's fallback and patch file handlers, which fail to sanitize path inputs before passing them to file resolution APIs.\n\n## TL;DR\nBrowserStack Runner through 0.9.5 permits unauthenticated remote file disclosure due to lack of path sanitization in its internal HTTP server handlers.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22\n- **Attack Vector**: Adjacent Network (AV:A)\n- **CVSS v4 Score**: 7.1 (High)\n- **EPSS Score**: 0.00024\n- **Impact**: Arbitrary File Disclosure\n- **Exploit Status**: PoC\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- BrowserStack Runner host systems running versions <= 0.9.5\n- **BrowserStack Runner**: <= 0.9.5 (Fixed in: `None`)\n\n## Mitigation\n\n- Implement server-side path resolution sanitization ensuring requested files remain within intended directories.\n- Bind the local HTTP test server strictly to the loopback interface (127.0.0.1) instead of 0.0.0.0.\n\n**Remediation Steps:**\n1. Inspect the local test runner setup to check if 'browserstack-runner' is being used.\n2. Integrate isSafePath validation code into lib/server.js as detailed in the technical patch section.\n3. Configure local firewalls to deny external inbound connections to test server ports (default 3000).\n\n## References\n\n- [NVD - CVE-2026-49144 Detail](https://nvd.nist.gov/vuln/detail/CVE-2026-49144)\n- [GitHub Security Advisory GHSA-8rpw-6cqh-2v9h](https://github.com/browserstack/browserstack-runner/security/advisories/GHSA-8rpw-6cqh-2v9h)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/browserstack-runner-path-traversal-via-default-http-handler)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-49144) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-03T23:20:57.000000Z"} {"uuid": "37698d3b-ca60-448f-bc38-132773d25c96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49144", "type": "seen", "source": "https://gist.github.com/alon710/c96f50c47f9fff8e91b22c3cc55eaa13", "content": "# CVE-2026-49144: CVE-2026-49144: Unauthenticated Arbitrary File Read via Path Traversal in BrowserStack Runner\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-03\n> **Full Report:** https://cvereports.com/reports/CVE-2026-49144\n\n## Summary\nAn unauthenticated path traversal vulnerability in BrowserStack Runner versions up to and including 0.9.5 allows remote or adjacent network attackers to read arbitrary files from the host system. The flaw exists within the local HTTP test server's fallback and patch file handlers, which fail to sanitize path inputs before passing them to file resolution APIs.\n\n## TL;DR\nBrowserStack Runner through 0.9.5 permits unauthenticated remote file disclosure due to lack of path sanitization in its internal HTTP server handlers.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22\n- **Attack Vector**: Adjacent Network (AV:A)\n- **CVSS v4 Score**: 7.1 (High)\n- **EPSS Score**: 0.00024\n- **Impact**: Arbitrary File Disclosure\n- **Exploit Status**: PoC\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- BrowserStack Runner host systems running versions <= 0.9.5\n- **BrowserStack Runner**: <= 0.9.5 (Fixed in: `None`)\n\n## Mitigation\n\n- Implement server-side path resolution sanitization ensuring requested files remain within intended directories.\n- Bind the local HTTP test server strictly to the loopback interface (127.0.0.1) instead of 0.0.0.0.\n\n**Remediation Steps:**\n1. Inspect the local test runner setup to check if 'browserstack-runner' is being used.\n2. Integrate isSafePath validation code into lib/server.js as detailed in the technical patch section.\n3. Configure local firewalls to deny external inbound connections to test server ports (default 3000).\n\n## References\n\n- [NVD - CVE-2026-49144 Detail](https://nvd.nist.gov/vuln/detail/CVE-2026-49144)\n- [GitHub Security Advisory GHSA-8rpw-6cqh-2v9h](https://github.com/browserstack/browserstack-runner/security/advisories/GHSA-8rpw-6cqh-2v9h)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/browserstack-runner-path-traversal-via-default-http-handler)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-49144) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-03T23:20:57.000000Z"} https://vulnerability.circl.lu/sighting/37698d3b-ca60-448f-bc38-132773d25c96/export Wed, 03 Jun 2026 23:20:57 +0000