Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/23 2:21 a.m.13 views

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

8.1CVSS7.3AI score0.0081EPSS
Exploits1References1
nvd
nvd
added 2023/12/05 12:15 p.m.24 views

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

8.1CVSS0.0081EPSS
Exploits1References3
prion
prion
added 2023/12/05 12:15 p.m.23 views

Privilege escalation

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

5.1CVSS7.5AI score0.0081EPSS
Exploits1References2Affected Software1
cve
cve
added 2023/12/05 11:30 a.m.53 views

CVE-2023-45839

CVE-2023-45839 concerns Buildroot (2023.08.1 and dev commit 622698d7847) with multiple data-integrity vulnerabilities in the package hash checking, related to aufs-util. Talos confirms Buildroot is susceptible to MITM-based tampering of downloaded sources (no hash/check for certain packages), ena...

8.1CVSS8.3AI score0.0081EPSS
Exploits1References3Affected Software1
osv
osv
added 2023/12/05 11:30 a.m.28 views

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

8.1CVSS7.2AI score0.0081EPSS
Exploits1References5
cvelist
cvelist
added 2023/12/05 11:30 a.m.35 views

CVE-2023-45839

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs-util...

8.1CVSS8.5AI score0.0081EPSS
Exploits1References2
Rows per page
Query Builder