CVE-2023-38633 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 96%

Vendor	Product	Version
gnome	librsvg	2.42.3 ≤ 𝑥 < 2.46.6
gnome	librsvg	2.48.0 ≤ 𝑥 < 2.48.11
gnome	librsvg	2.50.0 ≤ 𝑥 < 2.50.8
gnome	librsvg	2.52.0 ≤ 𝑥 < 2.52.10
gnome	librsvg	2.54.0 ≤ 𝑥 < 2.54.6
gnome	librsvg	2.55.0 ≤ 𝑥 < 2.55.3
gnome	librsvg	2.56.0 ≤ 𝑥 < 2.56.3
debian	debian_linux	11.0
debian	debian_linux	12.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

librsvg

bullseye (security)	2.50.3+dfsg-1+deb11u1 fixed
bullseye	2.50.3+dfsg-1+deb11u1 fixed
buster	not-affected
bookworm	2.54.7+dfsg-1~deb12u1 fixed
bookworm (security)	2.54.7+dfsg-1~deb12u1 fixed
trixie	2.59.1+dfsg-1 fixed
sid	2.59.2+dfsg-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

librsvg

lunar	Fixed 2.54.5+dfsg-1ubuntu2.1 released
jammy	Fixed 2.52.5+dfsg-3ubuntu0.2 released
focal	Fixed 2.48.9-1ubuntu0.20.04.4 released
bionic	not-affected
xenial	not-affected
trusty	ignored

Known Exploits!

Common Weakness Enumeration

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

http://seclists.org/fulldisclosure/2023/Jul/43

http://www.openwall.com/lists/oss-security/2023/07/27/1

http://www.openwall.com/lists/oss-security/2023/09/06/10

https://bugzilla.suse.com/show_bug.cgi?id=1213502

https://gitlab.gnome.org/GNOME/librsvg/-/issues/996

https://gitlab.gnome.org/GNOME/librsvg/-/releases/2.56.3

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/422NTIHIEBRASIG2DWXYBH4ADYMHY626/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R5BCXT5GW6RCL45ZUHUZR4CJG2BAFDVC/

https://news.ycombinator.com/item?id=37415799

https://security.netapp.com/advisory/ntap-20230831-0011/

https://www.canva.dev/blog/engineering/when-url-parsers-disagree-cve-2023-38633/

https://www.debian.org/security/2023/dsa-5484

http://seclists.org/fulldisclosure/2023/Jul/43

http://www.openwall.com/lists/oss-security/2023/07/27/1

http://www.openwall.com/lists/oss-security/2023/09/06/10

https://bugzilla.suse.com/show_bug.cgi?id=1213502

https://gitlab.gnome.org/GNOME/librsvg/-/issues/996

https://gitlab.gnome.org/GNOME/librsvg/-/releases/2.56.3

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/422NTIHIEBRASIG2DWXYBH4ADYMHY626/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R5BCXT5GW6RCL45ZUHUZR4CJG2BAFDVC/

https://news.ycombinator.com/item?id=37415799

https://security.netapp.com/advisory/ntap-20230831-0011/

https://www.canva.dev/blog/engineering/when-url-parsers-disagree-cve-2023-38633/

https://www.debian.org/security/2023/dsa-5484