CVE-2026-31817
Received Received - Intake
Directory Traversal in OliveTin Logs Allows Arbitrary File Write

Publication date: 2026-03-10

Last updated on: 2026-03-12

Assigner: GitHub, Inc.

Description
OliveTin gives access to predefined shell commands from a web interface. Prior to 3000.11.2, when the saveLogs feature is enabled, OliveTin persists execution log entries to disk. The filename used for these log files is constructed in part from the user-supplied UniqueTrackingId field in the StartAction API request. This value is not validated or sanitized before being used in a file path, allowing an attacker to use directory traversal sequences (e.g., ../../../) to write files to arbitrary locations on the filesystem. This vulnerability is fixed in 3000.11.2.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-10
Last Modified
2026-03-12
Generated
2026-06-16
AI Q&A
2026-03-11
EPSS Evaluated
2026-06-15
NVD
CVE-2026-31817
EUVD
EUVD-2026-10910
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
olivetin olivetin to 3000.11.2 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in OliveTin versions prior to 3000.11.2 when the saveLogs feature is enabled. OliveTin saves execution log entries to disk using filenames that include a user-supplied UniqueTrackingId field from the StartAction API request. Because this field is not validated or sanitized, an attacker can include directory traversal sequences (such as ../../../) in the UniqueTrackingId. This allows the attacker to write files to arbitrary locations on the filesystem, potentially overwriting or creating files outside the intended directory.

Impact Analysis

The vulnerability can allow an attacker with limited privileges to write files to arbitrary locations on the server's filesystem. This can lead to unauthorized modification or creation of files, potentially enabling further attacks such as privilege escalation, denial of service, or persistent compromise of the system. The CVSS score indicates a high impact on integrity and a low impact on availability, with no impact on confidentiality.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, upgrade OliveTin to version 3000.11.2 or later, where the issue is fixed.

Additionally, if the saveLogs feature is enabled, consider disabling it temporarily until the upgrade can be applied to prevent exploitation via directory traversal in log file paths.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-31817. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart