| tiêu đề | ruvnet sublinear-time-solver / consciousness-explorer sublinear-time-solver 1.5.0, consciousness-explorer 1.1.1, commit 1210646955f33abe5c91f894cc7b04d024f62408 Path Traversal |
|---|
| Mô tả | An arbitrary file write vulnerability (CWE-73) has been identified in the consciousness-explorer component of sublinear-time-solver, specifically within the MCP export_state tool. The tool accepts a user‑supplied filepath argument and writes JSON state data to that path using fs.writeFileSync without constraining the destination to a safe directory or validating path traversal sequences. An attacker with network access to the MCP interface can write or overwrite arbitrary files accessible to the server process, leading to integrity loss and potential service disruption. Version 1.1.1 of consciousness-explorer (commit 1210646) is confirmed affected, and no fixed version is available at the time of reporting. |
|---|
| Nguồn | ⚠️ https://github.com/ruvnet/sublinear-time-solver/issues/19 |
|---|
| Người dùng | BruceJqs (UID 97404) |
|---|
| Đệ trình | 17/04/2026 09:21 (cách đây 2 các tháng) |
|---|
| Kiểm duyệt | 01/05/2026 18:36 (14 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 360757 [ruvnet sublinear-time-solver 1.5.0 MCP Interface server.js export_state duyệt thư mục] |
|---|
| điểm | 20 |
|---|