CVE-2025-1686
All versions of the package io.pebbletemplates:pebble are vulnerable to External Control of File Name or Path via the include tag. A high privileged attacker can access sensitive local files by crafting malicious notification templates that leverage this tag to include files like /etc/passwd or /proc/1/environ.
Workaround
This vulnerability can be mitigated by disabling the include macro in Pebble Templates:
java
new PebbleEngine.Builder()
.registerExtensionCustomizer(new DisallowExtensionCustomizerBuilder()
.disallowedTokenParserTags(List.of("include"))
.build())
.build();
Workaround
This vulnerability can be mitigated by disabling the include macro in Pebble Templates:
java
new PebbleEngine.Builder()
.registerExtensionCustomizer(new DisallowExtensionCustomizerBuilder()
.disallowedTokenParserTags(List.of("include"))
.build())
.build();
Vendor
Product
CWE
Yayın Tarihi
2025-02-27 05:15:14
Güncelleme
2025-12-19 16:15:55
Source Identifier
report@snyk.io
KEV Date Added
-
Kategoriler
Referanslar
https://github.com/PebbleTemplates/pebble/issues/680
https://github.com/PebbleTemplates/pebble/issues/688
https://pebbletemplates.io/wiki/tag/include
https://security.snyk.io/vuln/SNYK-JAVA-IOPEBBLETEMPLATES-8745594
https://github.com/PebbleTemplates/pebble/pull/715
https://security.snyk.io/vuln/SNYK-JAVA-IOPEBBLETEMPLATES-8745594