Finding: Information Disclosure on Uploads Directory
Reference ID: CVE-2023-45855
Risk Level: High
Affected Target: https://deliver.tawk.to/uploads/
Description: This vulnerability was identified on an endpoint that appears to be a file upload directory. CVE-2023-45855 is related to the Python aiohttp library, where the server's response can leak sensitive information via the ETag header. This information could include internal file system details (like inode number and file size) of the underlying server. An attacker can use this information to understand the directory structure, identify hidden files, and prepare more effective attacks. The vulnerability's location in an /uploads/ directory significantly increases the risk, as this is a prime target for attackers.
Impact:
Information Leakage: An attacker can gain insight into the server's internal configuration and file system.
Advanced Reconnaissance: The flaw helps an attacker map the system and plan further exploits with greater precision.
Potential for Escalation: The leaked information could be combined with other vulnerabilities to achieve unauthorized access or escalate privileges.```you should contact tawk.to staff directly.
Hi,
Thank you for reaching out to us. We’ve already forwarded this to our team for review, and we’ll look into it as soon as possible. We appreciate your patience in the meantime.