Lucene search

[email protected]NVD:CVE-2023-5631

HistoryOct 18, 2023 - 3:15 p.m.

CVE-2023-5631

2023-10-1815:15:08

CWE-79

[email protected]

web.nvd.nist.gov

roundcube

xss

html

svg

remote attacker

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

5.9 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.1%

JSON

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker

to load arbitrary JavaScript code.

Affected configurations

NVD

Node

roundcubewebmailRange<1.4.15

roundcubewebmailRange1.5.0–1.5.5

roundcubewebmailRange1.6.0–1.6.4

Node

debiandebian_linuxMatch10.0

debiandebian_linuxMatch11.0

debiandebian_linuxMatch12.0

fedoraprojectfedoraMatch39

References

www.openwall.com/lists/oss-security/2023/11/01/1

www.openwall.com/lists/oss-security/2023/11/01/3

www.openwall.com/lists/oss-security/2023/11/17/2

bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079

github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d

github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613

github.com/roundcube/roundcubemail/issues/9168

github.com/roundcube/roundcubemail/releases/tag/1.4.15

github.com/roundcube/roundcubemail/releases/tag/1.5.5

github.com/roundcube/roundcubemail/releases/tag/1.6.4

lists.debian.org/debian-lts-announce/2023/10/msg00035.html

lists.fedoraproject.org/archives/list/[email protected]/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/

roundcube.net/news/2023/10/16/security-update-1.6.4-released

roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15

www.debian.org/security/2023/dsa-5531