Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-30630HistoryApr 13, 2023 - 4:15 p.m.
CVE-2023-30630
2023-04-1316:15:07
Debian Security Bug Tracker
security-tracker.debian.org
10
dmidecode
local file overwrite
sudo execution
security relevance
cve-2023-30630
unix
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
0.0004 Low
EPSS
Percentile
10.0%
Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via Sudo is plausible.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | dmidecode | <= 3.4-1 | dmidecode_3.4-1_all.deb |
| Debian | 11 | all | dmidecode | <= 3.3-2 | dmidecode_3.3-2_all.deb |
| Debian | 10 | all | dmidecode | <= 3.2-1 | dmidecode_3.2-1_all.deb |
| Debian | 999 | all | dmidecode | < 3.5-1 | dmidecode_3.5-1_all.deb |
| Debian | 13 | all | dmidecode | < 3.5-1 | dmidecode_3.5-1_all.deb |
Related
almalinux
almalinux
Moderate: dmidecode security update
2023-09-12 00:00:00
Moderate: dmidecode security update
2023-09-19 00:00:00
ubuntucve
ubuntucve
CVE-2023-30630
2023-04-13 00:00:00
nessus
nessus
EulerOS Virtualization 2.10.0 : dmidecode (EulerOS-SA-2023-2557)
2023-08-02 00:00:00
AlmaLinux 9 : dmidecode (ALSA-2023:5061)
2023-09-14 00:00:00
CentOS 8 : dmidecode (CESA-2023:5252)
2024-02-08 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2282
2023-10-24 14:17:14
cbl_mariner
cbl_mariner
CVE-2023-30630 affecting package dmidecode for versions less than 3.5-1
2023-05-25 09:38:10
amazon
amazon
Medium: dmidecode
2024-01-03 21:04:00
openvas
openvas
Huawei EulerOS: Security Advisory for dmidecode (EulerOS-SA-2023-3396)
2023-12-14 00:00:00
Huawei EulerOS: Security Advisory for dmidecode (EulerOS-SA-2023-2351)
2023-07-17 00:00:00
Huawei EulerOS: Security Advisory for dmidecode (EulerOS-SA-2023-2309)
2023-07-10 00:00:00
redhat
redhat
(RHSA-2023:5252) Moderate: dmidecode security update
2023-09-19 12:37:13
(RHSA-2023:5061) Moderate: dmidecode security update
2023-09-12 07:41:27
ibm
ibm
alpinelinux
alpinelinux
CVE-2023-30630
2023-04-13 16:15:07
mageia
mageia
Updated dmidecode packages fix security vulnerability
2023-05-21 11:42:44
redhatcve
redhatcve
CVE-2023-30630
2023-04-14 05:30:39
oraclelinux
oraclelinux
dmidecode security update
2023-09-20 00:00:00
dmidecode security update
2023-09-13 00:00:00
veracode
veracode
Local File Inclusion (LFI)
2023-08-07 01:34:31
nvd
nvd
CVE-2023-30630
2023-04-13 16:15:07
osv
osv
Moderate: dmidecode security update
2023-09-12 00:00:00
Moderate: dmidecode security update
2023-09-19 00:00:00
Moderate: dmidecode security update
2023-09-26 13:26:39
rocky
rocky
dmidecode security update
2023-09-26 13:26:39
cve
cve
CVE-2023-30630
2023-04-13 16:15:07
cvelist
cvelist
CVE-2023-30630
2023-04-13 00:00:00
prion
prion
Design/Logic Flaw
2023-04-13 16:15:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0386
2023-05-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0575
2023-05-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0018
2023-06-06 00:00:00
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
0.0004 Low
EPSS
Percentile
10.0%
Related for DEBIANCVE:CVE-2023-30630