CVE-2022-43753 : Security Advisory and Response

A Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in spacewalk/Uyuni of SUSE Linux Enterprise Module for SUSE Manager Server 4.2, SUSE Linux Enterprise Module for SUSE Manager Server 4.3, SUSE Manager Server 4.2 allows remote attackers to read files available to the user running the process, typically tomcat. This issue affects various packages within the mentioned systems.

Understanding CVE-2022-43753

This CVE involves an arbitrary file disclosure vulnerability in ScapResultDownload of SUMA/UYUNI.

What is CVE-2022-43753?

It is a Path Traversal vulnerability that allows remote attackers to access files of the user running the process.

The Impact of CVE-2022-43753

The vulnerability could be exploited by malicious actors to read sensitive files, compromising data confidentiality.

Technical Details of CVE-2022-43753

The vulnerability has a base severity of MEDIUM with a CVSS score of 4.3.

Vulnerability Description

The Path Traversal flaw in spacewalk/Uyuni allows unauthorized access to system files.

Affected Systems and Versions

SUSE Linux Enterprise Module for SUSE Manager Server 4.2 versions less than 4.2.28
SUSE Linux Enterprise Module for SUSE Manager Server 4.3 with spacewalk-java versions less than 4.3.39
SUSE Manager Server 4.2 with release-notes-susemanager versions less than 4.2.10

Exploitation Mechanism

Attackers can exploit this vulnerability remotely to read files accessible to the tomcat user.

Mitigation and Prevention

It is crucial to take immediate action to protect the affected systems.

Immediate Steps to Take

Upgrade the affected systems to the patched versions to prevent unauthorized file access.

Long-Term Security Practices

Regularly monitor and update systems to mitigate potential security risks.

Patching and Updates

Apply security patches provided by SUSE to address this vulnerability.