8 matches found
CVE-2023-45840
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
EUVD-2023-50110
Malicious code in bioql PyPI...
CVE-2023-45840
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
CVE-2023-45840
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
Privilege escalation
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
CVE-2023-45840
Summary (CVE-2023-45840): Buildroot 2023.08.1 and the dev commit 622698d7847 have data integrity vulnerabilities in the package hash checking, enabling a MITM attack to deliver compromised sources and potentially execute arbitrary commands in the builder. The Red Hat/OSV/Talos advisories describe...
CVE-2023-45840
Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the...
PT-2023-29726 · Buildroot +1 · Buildroot +1
Name of the Vulnerable Software and Affected Versions: Buildroot versions 2023.08.1 through 2023.08.1 Buildroot dev commit 622698d7847 Description: Multiple data integrity vulnerabilities exist in the package hash checking functionality. A specially crafted man-in-the-middle attack can lead to...