Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.11 views

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

8.1CVSS7.3AI score0.0081EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-50110

Malicious code in bioql PyPI...

8.1CVSS8.2AI score0.0081EPSS
Exploits1References2
OSV
OSV
added 2023/12/05 12:15 p.m.42 views

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

8.1CVSS7.2AI score
Exploits0References3
NVD
NVD
added 2023/12/05 12:15 p.m.27 views

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

8.1CVSS0.0081EPSS
Exploits1References3
Prion
Prion
added 2023/12/05 12:15 p.m.26 views

Privilege escalation

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

5.1CVSS7.5AI score0.0081EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/12/05 11:30 a.m.39 views

CVE-2023-45840

Summary (CVE-2023-45840): Buildroot 2023.08.1 and the dev commit 622698d7847 have data integrity vulnerabilities in the package hash checking, enabling a MITM attack to deliver compromised sources and potentially execute arbitrary commands in the builder. The Red Hat/OSV/Talos advisories describe...

8.1CVSS8.3AI score0.0081EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/05 11:30 a.m.32 views

CVE-2023-45840

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...

8.1CVSS8.5AI score0.0081EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/12/05 12:0 a.m.4 views

PT-2023-29726 · Buildroot +1 · Buildroot +1

Name of the Vulnerable Software and Affected Versions: Buildroot versions 2023.08.1 through 2023.08.1 Buildroot dev commit 622698d7847 Description: Multiple data integrity vulnerabilities exist in the package hash checking functionality. A specially crafted man-in-the-middle attack can lead to...

8.1CVSS8.2AI score0.0081EPSS
Exploits1References9
Rows per page
Query Builder