Lucene search

K

[email protected]NVD:CVE-2023-42115

HistoryMay 03, 2024 - 3:15 a.m.

CVE-2023-42115

2024-05-0303:15:50

CWE-787

[email protected]

web.nvd.nist.gov

13

exim

remote code execution

authentication bypass

tcp

buffer overflow

zdi-can-17434

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0.001

Percentile

29.6%

Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the smtp service, which listens on TCP port 25 by default. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of a buffer. An attacker can leverage this vulnerability to execute code in the context of the service account.
. Was ZDI-CAN-17434.

References

www.zerodayinitiative.com/advisories/ZDI-23-1469/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0.001

Percentile

29.6%

Related for NVD:CVE-2023-42115

cgr1 wolfi1 wizblog1 githubexploit2 hivepro1 vulnrichment1 veracode1 zdi1 osv4 cvelist1 ubuntucve1 redhatcve1 debiancve1 alpinelinux1 cve1 nessus10 ubuntu1 openvas9 debian1 fedora3 gentoo1 redos1 malwarebytes1 thn1