Lucene search
Ubuntu.comUB:CVE-2023-33733HistoryJun 05, 2023 - 12:00 a.m.
CVE-2023-33733
2023-06-0500:00:00
ubuntu.com
ubuntu.com
33
cve-2023-33733
reportlab
pdf
code execution
vulnerability
supply attack
crafted
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.0%
Reportlab up to v3.6.12 allows attackers to execute arbitrary code via
supplying a crafted PDF file.
Notes
| Author | Note |
|---|---|
| sbeattie | PoC in the github writeup |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | python-reportlab | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | python-reportlab | < 3.5.34-1ubuntu1.1 | UNKNOWN |
| ubuntu | 22.04 | noarch | python-reportlab | < 3.6.8-1ubuntu0.1 | UNKNOWN |
| ubuntu | 22.10 | noarch | python-reportlab | < 3.6.11-1ubuntu0.1 | UNKNOWN |
| ubuntu | 23.04 | noarch | python-reportlab | < 3.6.12-1ubuntu0.1 | UNKNOWN |
| ubuntu | 23.10 | noarch | python-reportlab | < 3.6.13-1 | UNKNOWN |
| ubuntu | 24.04 | noarch | python-reportlab | < 3.6.13-1 | UNKNOWN |
| ubuntu | 16.04 | noarch | python-reportlab | < any | UNKNOWN |
Related
ubuntu
ubuntu
ReportLab vulnerability
2023-07-03 00:00:00
cve
cve
CVE-2023-33733
2023-06-05 16:15:09
githubexploit
githubexploit
Exploit for CVE-2023-33733
2023-05-30 22:22:50
Exploit for CVE-2023-33733
2024-03-18 09:54:02
Exploit for Vulnerability in Reportlab
2024-05-13 02:01:17
fedora
fedora
[SECURITY] Fedora 38 Update: python-reportlab-4.0.4-2.fc38
2023-06-30 01:23:25
[SECURITY] Fedora 37 Update: python-reportlab-4.0.4-2.fc37
2023-07-05 01:19:43
osv
osv
python-reportlab vulnerability
2023-07-03 10:41:50
Reportlab vulnerable to remote code execution
2023-06-05 18:30:27
github
github
Reportlab vulnerable to remote code execution
2023-06-05 18:30:27
nvd
nvd
CVE-2023-33733
2023-06-05 16:15:09
openvas
openvas
Fedora: Security Advisory for python-reportlab (FEDORA-2023-553fe307dc)
2023-07-01 00:00:00
Fedora: Security Advisory for python-reportlab (FEDORA-2023-3b82f4aa86)
2023-07-06 00:00:00
Ubuntu: Security Advisory (USN-6196-1)
2023-07-04 00:00:00
nessus
nessus
Fedora 37 : python-reportlab (2023-3b82f4aa86)
2023-07-05 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : ReportLab vulnerability (USN-6196-1)
2023-07-03 00:00:00
prion
prion
Design/Logic Flaw
2023-06-05 16:15:00
cvelist
cvelist
CVE-2023-33733
2023-06-05 00:00:00
redhatcve
redhatcve
CVE-2023-33733
2023-06-26 18:48:28
debiancve
debiancve
CVE-2023-33733
2023-06-05 16:15:09
veracode
veracode
Arbitrary Code Execution
2023-06-08 02:29:50
redos
redos
ROS-20240524-02
2024-05-24 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.0%
Related for UB:CVE-2023-33733