CVE-2023-52076

2024-01-2516:15:07

Debian Security Bug Tracker

security-tracker.debian.org

atril document viewer

linux

mate desktop environment

vulnerability

path traversal

arbitrary file write

filesystem

remote command execution

patch

security

8.5 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

7.3 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.0%

JSON

Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A path traversal and arbitrary file write vulnerability exists in versions of Atril prior to 1.26.2. This vulnerability is capable of writing arbitrary files anywhere on the filesystem to which the user opening a crafted document has access. The only limitation is that this vulnerability cannot be exploited to overwrite existing files, but that doesn’t stop an attacker from achieving Remote Command Execution on the target system. Version 1.26.2 of Atril contains a patch for this vulnerability.

OSVersionArchitecturePackageVersionFilename
Debian12allatril< 1.26.0-2+deb12u3atril_1.26.0-2+deb12u3_all.deb
Debian11allatril< 1.24.0-1+deb11u1atril_1.24.0-1+deb11u1_all.deb
Debian10allatril< 1.20.3-1+deb10u2atril_1.20.3-1+deb10u2_all.deb
Debian999allatril< 1.26.2-1atril_1.26.2-1_all.deb
Debian13allatril< 1.26.2-1atril_1.26.2-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	atril	< 1.26.0-2+deb12u3	atril_1.26.0-2+deb12u3_all.deb
Debian	11	all	atril	< 1.24.0-1+deb11u1	atril_1.24.0-1+deb11u1_all.deb
Debian	10	all	atril	< 1.20.3-1+deb10u2	atril_1.20.3-1+deb10u2_all.deb
Debian	999	all	atril	< 1.26.2-1	atril_1.26.2-1_all.deb
Debian	13	all	atril	< 1.26.2-1	atril_1.26.2-1_all.deb