CVE-2024-30254 - Vulnerability Details - OpenCVE

MesonLSP is an unofficial, unendorsed language server for meson written in C++. A vulnerability in versions prior to 4.1.4 allows overwriting arbitrary files if the attacker can make the victim either run the language server within a specific crafted project or `mesonlsp --full`. Version 4.1.4 contains a patch for this issue. As a workaround, avoid running `mesonlsp --full` and set the language server option `others.neverDownloadAutomatically` to `true`.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact Low

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a
https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-04-04T19:00:42.227Z

Updated: 2024-08-26T20:43:45.256Z

Reserved: 2024-03-26T12:52:00.933Z

Link: CVE-2024-30254

Vulnrichment

Updated: 2024-08-02T01:32:05.394Z

NVD

Status : Awaiting Analysis

Published: 2024-04-04T19:15:08.793

Modified: 2024-11-21T09:11:33.107

Link: CVE-2024-30254

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-30254", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-26T12:52:00.933Z", "datePublished": "2024-04-04T19:00:42.227Z", "dateUpdated": "2024-08-26T20:43:45.256Z"}, "containers": {"cna": {"title": "Directory traversal allowing overwriting arbitrary files", "problemTypes": [{"descriptions": [{"cweId": "CWE-22", "lang": "en", "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h"}, {"name": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "tags": ["x_refsource_MISC"], "url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a"}], "affected": [{"vendor": "JCWasmx86", "product": "mesonlsp", "versions": [{"version": "< 4.1.4", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-04T19:00:42.227Z"}, "descriptions": [{"lang": "en", "value": "MesonLSP is an unofficial, unendorsed language server for meson written in C++. A vulnerability in versions prior to 4.1.4 allows overwriting arbitrary files if the attacker can make the victim either run the language server within a specific crafted project or `mesonlsp --full`. Version 4.1.4 contains a patch for this issue. As a workaround, avoid running `mesonlsp --full` and set the language server option `others.neverDownloadAutomatically` to `true`.\n\n"}], "source": {"advisory": "GHSA-48c5-35fh-846h", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:32:05.394Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h"}, {"name": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a"}]}, {"affected": [{"vendor": "jcwasmx86", "product": "mesonlsp", "cpes": ["cpe:2.3:a:jcwasmx86:mesonlsp:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.1.4", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-04-04T20:03:25.558074Z", "id": "CVE-2024-30254", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-26T20:43:45.256Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "name": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "name": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:32:05.394Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-30254", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-04T20:03:25.558074Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:jcwasmx86:mesonlsp:*:*:*:*:*:*:*:*"], "vendor": "jcwasmx86", "product": "mesonlsp", "versions": [{"status": "affected", "version": "0", "lessThan": "4.1.4", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-26T20:43:40.288Z"}}], "cna": {"title": "Directory traversal allowing overwriting arbitrary files", "source": {"advisory": "GHSA-48c5-35fh-846h", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "JCWasmx86", "product": "mesonlsp", "versions": [{"status": "affected", "version": "< 4.1.4"}]}], "references": [{"url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "name": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "name": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "MesonLSP is an unofficial, unendorsed language server for meson written in C++. A vulnerability in versions prior to 4.1.4 allows overwriting arbitrary files if the attacker can make the victim either run the language server within a specific crafted project or `mesonlsp --full`. Version 4.1.4 contains a patch for this issue. As a workaround, avoid running `mesonlsp --full` and set the language server option `others.neverDownloadAutomatically` to `true`.\n\n"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-04T19:00:42.227Z"}}}, "cveMetadata": {"cveId": "CVE-2024-30254", "state": "PUBLISHED", "dateUpdated": "2024-08-26T20:43:45.256Z", "dateReserved": "2024-03-26T12:52:00.933Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-04-04T19:00:42.227Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "MesonLSP is an unofficial, unendorsed language server for meson written in C++. A vulnerability in versions prior to 4.1.4 allows overwriting arbitrary files if the attacker can make the victim either run the language server within a specific crafted project or `mesonlsp --full`. Version 4.1.4 contains a patch for this issue. As a workaround, avoid running `mesonlsp --full` and set the language server option `others.neverDownloadAutomatically` to `true`.\n\n"}, {"lang": "es", "value": "MesonLSP es un servidor de lenguaje no oficial y no respaldado para meson escrito en C++. Una vulnerabilidad en versiones anteriores a la 4.1.4 permite sobrescribir archivos arbitrarios si el atacante puede hacer que la v\u00edctima ejecute el servidor de idioma dentro de un proyecto manipulado espec\u00edfico o `mesonlsp --full`. La versi\u00f3n 4.1.4 contiene un parche para este problema. Como workaround, evite ejecutar `mesonlsp --full` y establezca la opci\u00f3n del servidor de idioma `others.neverDownloadAutomatically` en `true`."}], "id": "CVE-2024-30254", "lastModified": "2024-11-21T09:11:33.107", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 4.7, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-04-04T19:15:08.793", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a"}, {"source": "security-advisories@github.com", "url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/JCWasmx86/mesonlsp/commit/594b6334061371911cd59389124ab8af30ce0a3a"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/JCWasmx86/mesonlsp/security/advisories/GHSA-48c5-35fh-846h"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "security-advisories@github.com", "type": "Secondary"}]}