Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2023-6395

Published: 16/01/2024 Updated: 09/02/2024
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges. This weakness stems from the absence of proper sandboxing during the expansion and execution of Jinja2 templates, which may be included in certain configuration parameters. While the Mock documentation advises treating users added to the mock group as privileged, certain build systems invoking mock on behalf of users might inadvertently permit less privileged users to define configuration tags. These tags could then be passed as parameters to mock during execution, potentially leading to the utilization of Jinja2 templates for remote privilege escalation and the execution of arbitrary code as the root user on the build server.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rpm-software-management mock -

fedoraproject extra packages for enterprise linux 8.0

fedoraproject extra packages for enterprise linux 9.0

fedoraproject extra packages for enterprise linux 7.0

fedoraproject fedora 38

fedoraproject fedora 39

Vendor Advisories

Red Hat:
Description<!---->The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges This weakness stems from the absence of proper sandboxing during the expansion and execution of Jinja2 templates, which may be included in certain config ...

Mailing Lists

Full Disclosure: CVE-2023-6395 Mock: Privilege escalation for users that can access mock configuration
Summary: There is a flaw in the Mock software (githubcom/rpm-software-management/mock) where an attacker may achieve privilege escalation and execute arbitrary code as the root user This is due to the lack of sandboxing when expanding and executing Jinja2 templates that may be included in some configuration parameters Mock is a chroot ...
Full Disclosure: Mock, Snap, LXC expose(d) chroot, container trees with unsafe permissions and contents to host users, pose risk to host
Hi, When Marco / Red Hat kindly brought the CVE-2023-6395 Mock issue: wwwopenwallcom/lists/oss-security/2024/01/16/1 to linux-distros on January 8, this reminded me about another concern I had also having to do with Mock, so I shared it with Marco and linux-distros members on that same day and planned to post about it to oss-security o ...

References

NVD-CWE-noinfohttps://access.redhat.com/security/cve/CVE-2023-6395https://bugzilla.redhat.com/show_bug.cgi?id=2252206https://github.com/xsuchy/templated-dictionary/commit/0740bd0ca8d487301881541028977d120f8b8933https://github.com/xsuchy/templated-dictionary/commit/bcd90f0dafa365575c4b101e6f5d98c4ef4e4b69http://www.openwall.com/lists/oss-security/2024/01/16/1http://www.openwall.com/lists/oss-security/2024/01/16/3https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NBFYREAJH4T7GXXQZ4GJEREN4Q3AHS3K/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62SP2BJC2AFLFJJAEHPGZ3ZINTBTI7AN/https://nvd.nist.govhttps://seclists.org/oss-sec/2024/q1/24https://access.redhat.com/security/cve/cve-2023-6395
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044client sideCVE-2021-47601deserializationCVE-2024-34994encryptionCVE-2021-47609CVE-2024-37079CVE-2024-38608
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook