CVE-2024-3829: qdrant input validation failure

June 3, 2024 (updated June 4, 2024)

qdrant/qdrant version 1.9.0-dev is vulnerable to arbitrary file read and write during the snapshot recovery process. Attackers can exploit this vulnerability by manipulating snapshot files to include symlinks, leading to arbitrary file read by adding a symlink that points to a desired file on the filesystem and arbitrary file write by including a symlink and a payload file in the snapshot’s directory structure. This vulnerability allows for the reading and writing of arbitrary files on the server, which could potentially lead to a full takeover of the system. The issue is fixed in version v1.9.0.

References

github.com/advisories/GHSA-7m75-x27w-r52r
github.com/qdrant/qdrant-client
github.com/qdrant/qdrant/commit/ee7a31ec3459a6a4219200234615c1817ab82260
huntr.com/bounties/abd9c906-75ee-4d84-b76d-ce1386401e08
nvd.nist.gov/vuln/detail/CVE-2024-3829

Detect and mitigate CVE-2024-3829 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →