Vulners
Lucene search
Linux Distros Unpatched Vulnerability : CVE-2022-23538
| Reporter | Title | Published | Views | Family All 31 |
|---|---|---|---|---|
 | CVE-2022-23538 | 17 Jan 202320:06 | – | alpinelinux |
 | SCS Library Client 安全漏洞 | 17 Jan 202300:00 | – | cnnvd |
 | CVE-2022-23538 | 17 Jan 202320:06 | – | cve |
 | CVE-2022-23538 User credentials leaked to third-party service via HTTP redirect in scs-library-client | 17 Jan 202320:06 | – | cvelist |
 | CVE-2022-23538 | 17 Jan 202320:06 | – | debiancve |
 | EUVD-2023-0392 | 3 Oct 202520:07 | – | euvd |
 | [SECURITY] Fedora 36 Update: apptainer-1.1.6-1.fc36 | 22 Feb 202311:10 | – | fedora |
| [SECURITY] Fedora 37 Update: apptainer-1.1.6-1.fc37 | 22 Feb 202310:16 | – | fedora |
 | Fedora 37 : apptainer (2023-01ff262091) | 22 Feb 202300:00 | – | nessus |
| Fedora 36 : apptainer (2023-677d58bb20) | 22 Feb 202300:00 | – | nessus |
10
| Source | Link |
|---|---|
| ubuntu | www.ubuntu.com/security/CVE-2022-23538 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(245944);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/05/21");
script_cve_id("CVE-2022-23538");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2022-23538");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services (SCS)
Container Library Service. When the scs-library-client is used to pull a container image, with
authentication, the HTTP Authorization header sent by the client to the library service may be incorrectly
leaked to an S3 backing storage provider. This occurs in a specific flow, where the library service
redirects the client to a backing S3 storage server, to perform a multi-part concurrent download.
Depending on site configuration, the S3 service may be provided by a third party. An attacker with access
to the S3 service may be able to extract user credentials, allowing them to impersonate the user. The
vulnerable multi-part concurrent download flow, with redirect to S3, is only used when communicating with
a Singularity Enterprise 1.x installation, or third party server implementing this flow. Interaction with
Singularity Enterprise 2.x, and Singularity Container Services (cloud.sylabs.io), does not trigger the
vulnerable flow. We encourage all users to update. Users who interact with a Singularity Enterprise 1.x
installation, using a 3rd party S3 storage service, are advised to revoke and recreate their
authentication tokens within Singularity Enterprise. There is no workaround available at this time.
(CVE-2022-23538)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2022-23538");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-23538");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/08");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.04");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.10");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:singularity-container");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
script_require_ports("Host/OS/Ubuntu Linux-18.04", "Host/OS/Ubuntu Linux-24.04", "Host/OS/Ubuntu Linux-25.04", "Host/OS/Ubuntu Linux-25.10");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Ubuntu Linux-18.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "18.04",
"pkgs": [
{"reference": "singularity-container"}
]
}
]
},
"Ubuntu Linux-24.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "24.04",
"pkgs": [
{"reference": "singularity-container"}
]
}
]
},
"Ubuntu Linux-25.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "25.04",
"pkgs": [
{"reference": "singularity-container"}
]
}
]
},
"Ubuntu Linux-25.10": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "25.10",
"pkgs": [
{"reference": "singularity-container"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 May 2026 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 3.15.2 - 7.6
EPSS0.00365
SSVC