Vulnerabilities > CVE-2019-17221 - Files or Directories Accessible to External Parties vulnerability in Phantomjs

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

phantomjs

CWE-552

NVD

Published: 2019-11-05

Updated: 2019-11-08

Summary

PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as demonstrated by an XMLHttpRequest for a file:// URI. The vulnerability exists in the page.open() function of the webpage module, which loads a specified URL and calls a given callback. An attacker can supply a specially crafted HTML file, as user input, that allows reading arbitrary files on the filesystem. For example, if page.render() is the function callback, this generates a PDF or an image of the targeted file. NOTE: this product is no longer developed.

Vulnerable Configurations

Part	Description	Count
Application	Phantomjs Phantomjs Phantomjs 1.0.0 Phantomjs Phantomjs 1.1.0 Phantomjs Phantomjs 1.2.0 Phantomjs Phantomjs 1.3.0 Phantomjs Phantomjs 1.4.0 Phantomjs Phantomjs 1.4.1 Phantomjs Phantomjs 1.5.0 Phantomjs Phantomjs 1.6.0 Phantomjs Phantomjs 1.6.1 Phantomjs Phantomjs 1.7.0 Phantomjs Phantomjs 1.8.0 Phantomjs Phantomjs 1.8.1 Phantomjs Phantomjs 1.8.2 Phantomjs Phantomjs 1.9.0 Phantomjs Phantomjs 1.9.1 Phantomjs Phantomjs 1.9.2 Phantomjs Phantomjs 1.9.3 Phantomjs Phantomjs 1.9.6 Phantomjs Phantomjs 1.9.7 Phantomjs Phantomjs 1.9.8 Phantomjs Phantomjs 2.0.0 Phantomjs Phantomjs 2.1.0 Phantomjs Phantomjs 2.1.1	23

Common Weakness Enumeration (CWE)

CWE-552 - Files or Directories Accessible to External Parties

References

https://www.darkmatter.ae/blogs/breaching-the-perimeter-phantomjs-arbitrary-file-read/