Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2024 Greenbone AGOPENVAS:1361412562310886389
HistoryApr 03, 2024 - 12:00 a.m.

Fedora: Security Advisory for ghc-base64 (FEDORA-2024-b458482d48)

2024-04-0300:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
7
fedora
ghc-base64
fedora-2024-b458482d48
cve-2023-35936
cve-2023-38745
fc39
vendorfix
package
vulnerability
update

CVSS3

6.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.886389");
  script_version("2024-09-05T12:18:35+0000");
  script_cve_id("CVE-2023-35936", "CVE-2023-38745");
  script_tag(name:"cvss_base", value:"5.6");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:H/Au:N/C:N/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-09-05 12:18:35 +0000 (Thu, 05 Sep 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-08-03 13:43:26 +0000 (Thu, 03 Aug 2023)");
  script_tag(name:"creation_date", value:"2024-04-03 01:16:09 +0000 (Wed, 03 Apr 2024)");
  script_name("Fedora: Security Advisory for ghc-base64 (FEDORA-2024-b458482d48)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("Fedora Local Security Checks");

  script_xref(name:"Advisory-ID", value:"FEDORA-2024-b458482d48");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A25Z6J4VBJCPEKQ6DJJW5ZTXSMX5I5IY");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'ghc-base64'
  package(s) announced via the FEDORA-2024-b458482d48 advisory.
Note: This VT has been deprecated as a duplicate.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"RFC 4648-compliant Base64 with an eye towards performance and modernity
(additional support for RFC 7049 standards).");

  script_tag(name:"affected", value:"'ghc-base64' package(s) on Fedora 39.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  script_tag(name:"deprecated", value:TRUE);

exit(0);
}

exit(66);

Related

fedora 21
openvas 21
nvd 2
debiancve 2
nessus 4
prion 2
ubuntucve 2
osv 4
debian 1
cve 2
cvelist 2
redhatcve 2
veracode 1
fedora
fedora
[SECURITY] Fedora 38 Update: ghc-hakyll-4.16.2.0-1.fc38
2024-03-31 01:54:46
[SECURITY] Fedora 40 Update: ghc-hakyll-4.16.2.0-4.fc40
2024-03-29 00:21:19
[SECURITY] Fedora 39 Update: ghc-toml-parser-1.3.2.0-29.fc39
2024-03-30 01:09:59
openvas
openvas
Fedora: Security Advisory for pandoc-cli (FEDORA-2024-b458482d48)
2024-04-03 00:00:00
Fedora: Security Advisory for ghc-hakyll (FEDORA-2024-7d83cbccb6)
2024-03-29 00:00:00
Fedora: Security Advisory for patat (FEDORA-2024-7d83cbccb6)
2024-03-29 00:00:00
nvd
nvd
CVE-2023-38745
2023-07-25 04:15:10
CVE-2023-35936
2023-07-05 21:15:09
debiancve
debiancve
CVE-2023-38745
2023-07-25 04:15:10
CVE-2023-35936
2023-07-05 21:15:09
nessus
nessus
Fedora 40 : ghc-base64 / ghc-hakyll / ghc-isocline / ghc-toml-parser / gitit / etc (2024-7d83cbccb6)
2024-04-29 00:00:00
Debian DLA-3507-1 : pandoc - LTS security update
2023-07-25 00:00:00
Fedora 38 : ghc-base64 / ghc-hakyll / gitit / pandoc / patat (2024-6ad6b9f417)
2024-03-30 00:00:00
prion
prion
Path traversal
2023-07-25 04:15:00
Format string
2023-07-05 21:15:00
ubuntucve
ubuntucve
CVE-2023-38745
2023-07-25 00:00:00
CVE-2023-35936
2023-07-05 00:00:00
osv
osv
CVE-2023-38745
2023-07-25 04:15:10
Arbitrary file write is possible when using PDF output or --extract-media with untrusted input
2023-08-22 23:08:06
CVE-2023-35936
2023-07-05 21:15:09
debian
debian
[SECURITY] [DLA 3507-1] pandoc security update
2023-07-25 19:10:00
cve
cve
CVE-2023-38745
2023-07-25 04:15:10
CVE-2023-35936
2023-07-05 21:15:09
cvelist
cvelist
CVE-2023-38745
2023-07-25 00:00:00
CVE-2023-35936 Arbitrary file write is possible in Pandoc when using PDF output or --extract-media with untrusted input
2023-07-05 20:37:56
redhatcve
redhatcve
CVE-2023-38745
2023-07-27 14:54:43
CVE-2023-35936
2023-07-27 14:54:20
veracode
veracode
Arbitrary File Write
2023-07-27 01:20:58

CVSS3

6.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON
Related for OPENVAS:1361412562310886389
fedora21openvas21nvd2debiancve2nessus4prion2ubuntucve2osv4debian1cve2cvelist2redhatcve2veracode1