CVE-2021-4287

A vulnerability, which was classified as problematic, was found in ReFirm Labs binwalk up to 2.3.2. Affected is an unknown function of the file src/binwalk/modules/extractor.py of the component Archive Extraction Handler. The manipulation leads to symlink following. It is possible to launch the attack remotely. Upgrading to version 2.3.3 is able to address this issue. The name of the patch is fa0c0bd59b8588814756942fe4cb5452e76c1dcd. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-216876.
Symlink
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
VulDBCNA
5 MEDIUM
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
microsoftbinwalk
𝑥
< 2.3.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
binwalk
bullseye
unimportant
bookworm
2.3.4+dfsg1-1
fixed
sid
2.4.2+dfsg1-1
fixed
trixie
2.4.2+dfsg1-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
binwalk
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
needs-triage
bionic
needs-triage
xenial
not-affected
trusty
ignored
Common Weakness Enumeration
References
https://github.com/ReFirmLabs/binwalk/commit/fa0c0bd59b8588814756942fe4cb5452e76c1dcd
https://github.com/ReFirmLabs/binwalk/pull/556
https://github.com/ReFirmLabs/binwalk/releases/tag/v2.3.3
https://vuldb.com/?ctiid.216876
https://vuldb.com/?id.216876
https://github.com/ReFirmLabs/binwalk/commit/fa0c0bd59b8588814756942fe4cb5452e76c1dcd
https://github.com/ReFirmLabs/binwalk/pull/556
https://github.com/ReFirmLabs/binwalk/releases/tag/v2.3.3
https://vuldb.com/?ctiid.216876
https://vuldb.com/?id.216876