cve/2023/CVE-2023-30945.md

### [CVE-2023-30945](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30945)
![](https://img.shields.io/static/v1?label=Product&message=com.palantir.gotham%3Aclips2&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=com.palantir.video%3Avideo-clip-distributor&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=com.palantir.video%3Avideo-history-server&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=*%3C%200.111.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=*%3C%200.24.10%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=*%3C%202.210.3%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=The%20product%20uses%20external%20input%20to%20construct%20a%20pathname%20that%20is%20intended%20to%20identify%20a%20file%20or%20directory%20that%20is%20located%20underneath%20a%20restricted%20parent%20directory%2C%20but%20the%20product%20does%20not%20properly%20neutralize%20special%20elements%20within%20the%20pathname%20that%20can%20cause%20the%20pathname%20to%20resolve%20to%20a%20location%20that%20is%20outside%20of%20the%20restricted%20directory.&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=When%20an%20actor%20claims%20to%20have%20a%20given%20identity%2C%20the%20product%20does%20not%20prove%20or%20insufficiently%20proves%20that%20the%20claim%20is%20correct.&color=brighgreen)

### Description

Multiple Services such as VHS(Video History Server) and VCD(Video Clip Distributor) and Clips2 were discovered to be vulnerable to an unauthenticated arbitrary file read/write vulnerability due to missing input validation on filenames. A malicious attacker could read sensitive files from the filesystem or write/delete arbitrary files on the filesystem as well.

### POC

#### Reference
- https://palantir.safebase.us/?tcuUid=e62e4dad-b39b-48ba-ba30-7b7c83406ad9

#### Github
No PoCs found on GitHub currently.