Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2023-A04CC349E1.NASL
HistoryJan 07, 2024 - 12:00 a.m.

Fedora 39 : python-aiohttp / python-pysqueezebox / python-wled (2023-a04cc349e1)

2024-01-0700:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
fedora 39
python
aiohttp
pysqueezebox
wled
vulnerabilities
improper validation
http request
control
patched version
cve-2023-49081
cve-2023-49082
nessus

7.3 High

AI Score

Confidence

Low

JSON

The remote Fedora 39 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-a04cc349e1 advisory.

  • aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation made it possible for an attacker to modify the HTTP request (e.g. to insert a new header) or create a new HTTP request if the attacker controls the HTTP version. The vulnerability only occurs if the attacker can control the HTTP version of the request. This issue has been patched in version 3.9.0. (CVE-2023-49081)

  • aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation makes it possible for an attacker to modify the HTTP request (e.g. insert a new header) or even create a new HTTP request if the attacker controls the HTTP method. The vulnerability occurs only if the attacker can control the HTTP method (GET, POST etc.) of the request. If the attacker can control the HTTP version of the request it will be able to modify the request (request smuggling). This issue has been patched in version 3.9.0. (CVE-2023-49082)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2023-a04cc349e1
#

include('compat.inc');

if (description)
{
  script_id(187672);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/07");

  script_cve_id("CVE-2023-49081", "CVE-2023-49082");
  script_xref(name:"FEDORA", value:"2023-a04cc349e1");

  script_name(english:"Fedora 39 : python-aiohttp / python-pysqueezebox / python-wled (2023-a04cc349e1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Fedora 39 host has packages installed that are affected by multiple vulnerabilities as referenced in the
FEDORA-2023-a04cc349e1 advisory.

  - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation made
    it possible for an attacker to modify the HTTP request (e.g. to insert a new header) or create a new HTTP
    request if the attacker controls the HTTP version. The vulnerability only occurs if the attacker can
    control the HTTP version of the request. This issue has been patched in version 3.9.0. (CVE-2023-49081)

  - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper validation makes
    it possible for an attacker to modify the HTTP request (e.g. insert a new header) or even create a new
    HTTP request if the attacker controls the HTTP method. The vulnerability occurs only if the attacker can
    control the HTTP method (GET, POST etc.) of the request. If the attacker can control the HTTP version of
    the request it will be able to modify the request (request smuggling). This issue has been patched in
    version 3.9.0. (CVE-2023-49082)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2023-a04cc349e1");
  script_set_attribute(attribute:"solution", value:
"Update the affected python-aiohttp, python-pysqueezebox and / or python-wled packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-49082");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/11/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/12/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/01/07");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:39");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:python-aiohttp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:python-pysqueezebox");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:python-wled");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Fedora Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include('rpm.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Fedora' >!< os_release) audit(AUDIT_OS_NOT, 'Fedora');
var os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Fedora');
os_ver = os_ver[1];
if (! preg(pattern:"^39([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Fedora 39', 'Fedora ' + os_ver);

if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Fedora', cpu);

var pkgs = [
    {'reference':'python-aiohttp-3.9.1-1.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python-pysqueezebox-0.5.5-11.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python-wled-0.4.4-11.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var reference = NULL;
  var _release = NULL;
  var sp = NULL;
  var _cpu = NULL;
  var el_string = NULL;
  var rpm_spec_vers_cmp = NULL;
  var epoch = NULL;
  var allowmaj = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (reference && _release) {
    if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'python-aiohttp / python-pysqueezebox / python-wled');
}
VendorProductVersionCPE
fedoraprojectfedorapython-aiohttpp-cpe:/a:fedoraproject:fedora:python-aiohttp
fedoraprojectfedora39cpe:/o:fedoraproject:fedora:39
fedoraprojectfedorapython-pysqueezeboxp-cpe:/a:fedoraproject:fedora:python-pysqueezebox
fedoraprojectfedorapython-wledp-cpe:/a:fedoraproject:fedora:python-wled

Related

fedora 6
openvas 12
nessus 8
osv 7
redhatcve 2
cgr 2
wolfi 2
redos 1
github 2
debiancve 2
cvelist 2
prion 2
cve 2
ubuntucve 2
veracode 2
ibm 3
redhat 4
fedora
fedora
[SECURITY] Fedora 39 Update: python-wled-0.4.4-11.fc39
2024-01-08 01:24:14
[SECURITY] Fedora 38 Update: python-wled-0.4.4-11.fc38
2024-01-08 01:34:38
[SECURITY] Fedora 39 Update: python-aiohttp-3.9.1-1.fc39
2024-01-08 01:24:13
openvas
openvas
Fedora: Security Advisory for python-wled (FEDORA-2023-1f06098c71)
2024-01-18 00:00:00
aiohttp < 3.9.0 Multiple Vulnerabilities - Linux
2024-05-07 00:00:00
Fedora: Security Advisory for python-pysqueezebox (FEDORA-2023-a04cc349e1)
2024-01-18 00:00:00
nessus
nessus
Fedora 38 : python-aiohttp / python-pysqueezebox / python-wled (2023-1f06098c71)
2024-01-07 00:00:00
Fedora 40 : python-aiohttp / python-pysqueezebox / python-wled (2023-d5bd6b62e4)
2024-04-29 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-aiohttp (SUSE-SU-2024:0168-1)
2024-01-19 00:00:00
osv
osv
CVE-2023-49081
2023-11-30 07:15:08
PYSEC-2023-250
2023-11-30 07:15:00
aiohttp's ClientSession is vulnerable to CRLF injection via method
2023-11-27 23:17:24
redhatcve
redhatcve
CVE-2023-49081
2023-11-30 10:26:05
CVE-2023-49082
2023-11-30 10:56:09
cgr
cgr
CVE-2023-49081 vulnerabilities
2024-05-19 03:07:16
CVE-2023-49082 vulnerabilities
2024-05-19 03:07:16
wolfi
wolfi
CVE-2023-49082 vulnerabilities
2024-05-20 03:07:17
CVE-2023-49081 vulnerabilities
2024-05-20 03:07:17
redos
redos
ROS-20240318-01
2024-03-18 00:00:00
github
github
aiohttp's ClientSession is vulnerable to CRLF injection via version
2023-11-27 23:17:42
aiohttp's ClientSession is vulnerable to CRLF injection via method
2023-11-27 23:17:24
debiancve
debiancve
CVE-2023-49081
2023-11-30 07:15:08
CVE-2023-49082
2023-11-29 20:15:08
cvelist
cvelist
CVE-2023-49081 aiohttp's ClientSession is vulnerable to CRLF injection via version
2023-11-30 06:56:26
CVE-2023-49082 aiohttp's ClientSession is vulnerable to CRLF injection via method
2023-11-29 20:07:29
prion
prion
Design/Logic Flaw
2023-11-29 20:15:00
Design/Logic Flaw
2023-11-30 07:15:00
cve
cve
CVE-2023-49082
2023-11-29 20:15:08
CVE-2023-49081
2023-11-30 07:15:08
ubuntucve
ubuntucve
CVE-2023-49082
2023-11-29 00:00:00
CVE-2023-49081
2023-11-30 00:00:00
veracode
veracode
Request Smuggling
2023-11-29 06:58:43
CRLF Injection
2023-12-01 08:36:31
ibm
ibm
Security Bulletin: IBM Storage Fusion is vulnerable to HTTP request smuggling, denial of server due to aiohttp, cryptography.
2024-05-11 16:56:44
Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities
2024-02-15 13:15:36
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:31:55
redhat
redhat
(RHSA-2024:1057) Important: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
2024-02-29 19:25:54
(RHSA-2024:1878) Moderate: RHUI 4.8 Release - Security Updates, Bug Fixes, and Enhancements
2024-04-18 00:58:43
(RHSA-2024:1536) Moderate: Satellite 6.14.3 Async Security Update
2024-03-27 13:14:03

7.3 High

AI Score

Confidence

Low

JSON
Related for FEDORA_2023-A04CC349E1.NASL
fedora6openvas12nessus8osv7redhatcve2cgr2wolfi2redos1github2debiancve2cvelist2prion2cve2ubuntucve2veracode2ibm3redhat4