CVE-2024-3584

Published: May 30, 2024Modified: Jul 10, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

qdrant/qdrant version 1.9.0-dev is vulnerable to path traversal due to improper input validation in the `/collections/{name}/snapshots/upload` endpoint. By manipulating the `name` parameter through URL encoding, an attacker can upload a file to an arbitrary location on the system, such as `/root/poc.txt`. This vulnerability allows for the writing and overwriting of arbitrary files on the server, potentially leading to a full takeover of the system. The issue is fixed in version 1.9.0.

Affected (1)

Products: Qdrant: Qdrant

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Qdrant Qdrant	Before 1.9.0

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

https://github.com/qdrant/qdrant/commit/15479a45ffa3b955485ae516696f7e933a8cce8a

Source: security@huntr.dev

Patch

https://huntr.com/bounties/5c7c82e2-4873-40b7-a5f3-0f4a42642f73

Source: security@huntr.dev

ExploitThird Party Advisory

https://github.com/qdrant/qdrant/commit/15479a45ffa3b955485ae516696f7e933a8cce8a

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://huntr.com/bounties/5c7c82e2-4873-40b7-a5f3-0f4a42642f73

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.