Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-39810

Published: 28/08/2023 Updated: 07/09/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Busybox

Vulnerability Summary

An issue in the CPIO command of Busybox v1.33.2 allows malicious users to execute a directory traversal.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

busybox busybox 1.33.2

busybox busybox 1.30.1

Vendor Advisories

Debian CVElist Bug Report Logs: busybox: CVE-2023-39810
Debian Bug report logs - #1055307 busybox: CVE-2023-39810 Package: src:busybox; Maintainer for src:busybox is Debian Install System Team <debian-boot@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 3 Nov 2023 19:27:13 UTC Severity: important Tags: security, upstream Reply or subs ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: An issue in the CPIO command of Busybox v1332 allows attackers to execute a directory traversal ...

References

CWE-22https://www.pentagrid.ch/en/blog/busybox-cpio-directory-traversal-vulnerability/http://busybox.comhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055307https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2023-39810
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook