CVE-2024-6851

{"id": "CVE-2024-6851", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "security@huntr.dev", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-03-20T10:15:34.247", "references": [{"url": "https://huntr.com/bounties/839703fb-23b7-4dc4-ae81-44cd4740d3f3", "tags": ["Exploit", "Third Party Advisory"], "source": "security@huntr.dev"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@huntr.dev", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "In version 3.22.0 of aimhubio/aim, the LocalFileManager._cleanup function in the aim tracking server accepts a user-specified glob-pattern for deleting files. The function does not verify that the matched files are within the directory managed by LocalFileManager, allowing a maliciously crafted glob-pattern to lead to arbitrary file deletion."}, {"lang": "es", "value": "En la versi\u00f3n 3.22.0 de aimhubio/aim, la funci\u00f3n LocalFileManager._cleanup del servidor de seguimiento de AIM acepta un patr\u00f3n glob especificado por el usuario para eliminar archivos. Esta funci\u00f3n no verifica que los archivos coincidentes se encuentren en el directorio administrado por LocalFileManager, lo que permite que un patr\u00f3n glob manipulado con fines maliciosos provoque la eliminaci\u00f3n arbitraria de archivos."}], "lastModified": "2025-07-23T20:57:20.730", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:aimstack:aim:3.22.0:*:*:*:*:python:*:*", "vulnerable": true, "matchCriteriaId": "3BC21D48-2995-448A-ACF4-AB078A1A619B"}], "operator": "OR"}]}], "sourceIdentifier": "security@huntr.dev"}