Lucene search

CloudflareCVELIST:CVE-2023-3036

HistoryJun 14, 2023 - 11:08 a.m.

CVE-2023-3036 Out of Bounds Slice index in cfnts leads to remote panic

2023-06-1411:08:08

CWE-119

CWE-125

cloudflare

www.cve.org

cve-2023-3036

out of bounds

slice index

cfnts

remote panic

ntp server

github.com/cloudflare/cfnts

ntsauthenticator packet

extension length

remote attacker

unchecked read

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

52.5%

JSON

An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packet contents.

CNA Affected

[
  {
    "collectionURL": "https://github.com",
    "defaultStatus": "unaffected",
    "packageName": "cfnts",
    "platforms": [
      "rust"
    ],
    "product": "cfnts",
    "vendor": "Cloudflare",
    "versions": [
      {
        "lessThan": "< 783490b",
        "status": "affected",
        "version": "0",
        "versionType": "git"
      }
    ]
  }
]

References

github.com/cloudflare/cfnts/security/advisories/GHSA-pwx6-gw47-96cp

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

52.5%

JSON

Related for CVELIST:CVE-2023-3036