CVE-2024-45388

Basic Information

CVE State

PUBLISHED

Reserved Date

August 28, 2024

Published Date

September 02, 2024

Last Updated

September 03, 2024

Vendor

SpectoLabs

Product

hoverfly

Description

Hoverfly is a lightweight service virtualization/ API simulation / API mocking tool for developers and testers. The `/api/v2/simulation` POST handler allows users to create new simulation views from the contents of a user-specified file. This feature can be abused by an attacker to read arbitrary files from the Hoverfly server. Note that, although the code prevents absolute paths from being specified, an attacker can escape out of the `hf.Cfg.ResponsesBodyFilesPath` base path by using `../` segments and reach any arbitrary files. This issue was found using the Uncontrolled data used in path expression CodeQL query for python. Users are advised to make sure the final path (`filepath.Join(hf.Cfg.ResponsesBodyFilesPath, filePath)`) is contained within the expected base path (`filepath.Join(hf.Cfg.ResponsesBodyFilesPath, "/")`). This issue is also tracked as GHSL-2023-274.

Tags

python nuclei_scanner

CVSS Scores

EPSS Score

Score

91.50% (Percentile: 99.64%) as of 2025-06-12

SSVC Information

Exploitation

poc

Automatable

Yes

Technical Impact

partial

Exploit Status

Exploited in the Wild

Yes (2025-05-15 00:00:00 UTC) Source