Login Sign Up

CVE-2020-15097

9.1 CRITICAL
Path Traversal

📋 TL;DR

CVE-2020-15097 is a path traversal vulnerability in loklak server that allows attackers to read and write arbitrary files on the server filesystem. This affects all loklak server instances running versions up to commit 5f48476. Attackers can access admin configuration files and potentially compromise the entire server.

💻 Affected Systems

Products:
  • loklak server
Versions: All versions up to and including commit 5f48476
Operating Systems: All platforms running loklak
Default Config Vulnerable: ⚠️ Yes
Notes: All default installations are vulnerable. No special configuration required for exploitation.

📦 What is this software?

Loklak by Loklak Project

View all CVEs affecting Loklak →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete server compromise including credential theft, data exfiltration, and remote code execution through file writes.

🟠

Likely Case

Unauthorized access to sensitive configuration files, elasticsearch data, and potential privilege escalation.

🟢

If Mitigated

Limited impact if proper network segmentation and file permissions restrict application access.

🌐 Internet-Facing: HIGH - Directly exploitable via API endpoints without authentication.
🏢 Internal Only: MEDIUM - Still exploitable by internal attackers but requires network access.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires only HTTP requests to vulnerable API endpoints. No authentication needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Commit 50dd692 and later

Vendor Advisory: https://github.com/loklak/loklak_server/security/advisories/GHSA-7557-4v29-rqw6

Restart Required: Yes

Instructions:

1. Stop loklak server. 2. Update to latest version or at least commit 50dd692. 3. Restart loklak server.

🔧 Temporary Workarounds

Network Access Restriction

linux

Restrict access to loklak API endpoints using firewall rules

iptables -A INPUT -p tcp --dport 9000 -s trusted_network -j ACCEPT
iptables -A INPUT -p tcp --dport 9000 -j DROP

🧯 If You Can't Patch

  • Implement strict network segmentation to isolate loklak server from untrusted networks
  • Apply strict file system permissions to limit loklak process access to only necessary directories

🔍 How to Verify

Check if Vulnerable:

Check git commit hash: git log --oneline -1. If commit is 5f48476 or earlier, system is vulnerable.

Check Version:

git log --oneline -1

Verify Fix Applied:

Verify current commit is 50dd692 or later: git log --oneline -1 | grep 50dd692

📡 Detection & Monitoring

Log Indicators:

  • Unusual file path patterns in API requests
  • Access to sensitive files like /etc/passwd, configuration files

Network Indicators:

  • HTTP requests with ../ patterns in URL parameters
  • Unusual file read/write patterns to loklak API

SIEM Query:

source="loklak.log" AND ("../" OR "/etc/" OR "/root/")

📊 Metadata

CVE ID: CVE-2020-15097
CVSS v3 Score: 9.1 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-22
Published: February 2, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-15097, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)