CVE-2024-11944

high-risk

Published 2024-12-30

iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of iXsystems TrueNAS devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tarfile.extractall method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of root. Was ZDI-CAN-25626.

Do I need to act?

2.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

ADJACENT_NETWORK / LOW complexity

Affected Products (16)

Truenas Firmware

Affected Vendors

Ixsystems

References (2)

Release Notes https://www.truenas.com/docs/core/13.0/gettingstarted/corereleasenotes/#130-u63

Third Party Advisory https://www.zerodayinitiative.com/advisories/ZDI-24-1643/

/ 100

high-risk

Severity 27/34 · High

Exploitability 6/34 · Minimal

Exposure 18/34 · Moderate