The product contains protection mechanisms to restrict access to 'realdir/filename', but it constructs pathnames using external input in the form of 'fakedir/../realdir/filename' that are not handled by those mechanisms. This allows attackers to perform unauthorized actions against the targeted file.

What CVEs are caused by CWE-57?

1 recorded CVEs are attributed to CWE-57, including CVE-2024-34995.

What are the consequences of CWE-57?

Exploiting CWE-57 can lead to: Read Files or Directories, Modify Files or Directories.

Is CWE-57 actively exploited?

1 recorded CVEs are caused by CWE-57; none are currently in CISA's KEV catalog of actively exploited flaws.

CWE-57: Path Equivalence: 'fakedir/../realdir/filename'

Implementation

Input Validation

Inputs should be decoded and canonicalized to the application's current internal representation before being validated (CWE-180). Make sure that the application does not decode the same input twice (CWE-174). Such errors could be used to bypass allowlist validation schemes by introducing dangerous inputs after they have been checked.

CWE-57: Path Equivalence: 'fakedir/../realdir/filename'

CWE-57: Path Equivalence: 'fakedir/../realdir/filename'

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-57?

What CVEs are caused by CWE-57?

How do you prevent CWE-57?

What are the consequences of CWE-57?

Is CWE-57 actively exploited?

References

Stay ahead of CWE-57

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Illustrative examples

Related weaknesses

Parent

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-57?

What CVEs are caused by CWE-57?

How do you prevent CWE-57?

What are the consequences of CWE-57?

Is CWE-57 actively exploited?

References

Stay ahead of CWE-57