Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-22652
HistoryJun 01, 2023 - 12:15 p.m.

CVE-2023-22652

2023-06-0112:15:09
CWE-120
[email protected]
web.nvd.nist.gov
36
cve-2023-22652
buffer overflow
opensuse
libeconf
dos
nvd

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

41.0%

JSON

A Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability in openSUSE libeconf leads to DoS via malformed config files.
This issue affects libeconf: before 0.5.2.

Affected configurations

NVD
Node
opensuselibeconfRange<0.5.2

CNA Affected

[
  {
    "collectionURL": "https://github.com/openSUSE/libeconf",
    "defaultStatus": "unaffected",
    "product": "libeconf",
    "vendor": "openSUSE",
    "versions": [
      {
        "lessThan": "0.5.2",
        "status": "affected",
        "version": "?",
        "versionType": "0.5.2"
      }
    ]
  }
]

Related

nessus 12
prion 1
cvelist 1
nvd 2
veracode 1
oraclelinux 1
alpinelinux 1
osv 4
almalinux 1
redhatcve 1
ubuntucve 1
debiancve 1
cve 1
openvas 4
rocky 1
fedora 3
redhat 5
ibm 1
nessus
nessus
AlmaLinux 9 : libeconf (ALSA-2023:4347)
2023-08-02 00:00:00
Oracle Linux 9 : libeconf (ELSA-2023-4347)
2023-08-02 00:00:00
CentOS 9 : libeconf-0.4.1-3.el9
2024-02-29 00:00:00
prion
prion
Buffer overflow
2023-06-01 12:15:00
cvelist
cvelist
CVE-2023-22652 Stack buffer overflow in "read_file" function
2023-06-01 11:51:15
nvd
nvd
CVE-2023-22652
2023-06-01 12:15:09
CVE-2023-30079
2023-08-22 19:16:36
veracode
veracode
Buffer Overflow
2023-06-13 17:43:16
oraclelinux
oraclelinux
libeconf security update
2023-08-02 00:00:00
alpinelinux
alpinelinux
CVE-2023-22652
2023-06-01 12:15:09
osv
osv
Moderate: libeconf security update
2023-08-01 00:00:00
CVE-2023-22652
2023-06-01 12:15:09
CVE-2023-30079
2023-08-22 19:16:36
almalinux
almalinux
Moderate: libeconf security update
2023-08-01 00:00:00
redhatcve
redhatcve
CVE-2023-22652
2023-06-05 16:56:39
ubuntucve
ubuntucve
CVE-2023-22652
2023-06-01 00:00:00
debiancve
debiancve
CVE-2023-22652
2023-06-01 12:15:09
cve
cve
CVE-2023-30079
2023-08-22 19:16:36
openvas
openvas
Fedora: Security Advisory for libeconf (FEDORA-2023-86b710bb4f)
2023-09-09 00:00:00
Fedora: Security Advisory for libeconf (FEDORA-2023-6432bb65ae)
2023-09-02 00:00:00
Fedora: Security Advisory for libeconf (FEDORA-2023-b4b77f950c)
2023-09-14 00:00:00
rocky
rocky
libeconf security update
2023-10-06 23:10:28
fedora
fedora
[SECURITY] Fedora 38 Update: libeconf-0.5.2-1.fc38
2023-09-01 01:31:08
[SECURITY] Fedora 37 Update: libeconf-0.5.2-1.fc37
2023-09-13 01:35:36
[SECURITY] Fedora 39 Update: libeconf-0.5.2-1.fc39
2023-09-06 23:39:39
redhat
redhat
(RHSA-2023:4347) Moderate: libeconf security update
2023-08-01 07:58:09
(RHSA-2023:7218) Important: Kernel Module Management security update
2023-11-15 00:50:32
(RHSA-2023:4456) Moderate: OpenShift Container Platform 4.13.8 bug fix and security update
2023-08-08 11:15:27
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-08-30 14:40:17

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

41.0%

JSON
Related for CVE-2023-22652
nessus12prion1cvelist1nvd2veracode1oraclelinux1alpinelinux1osv4almalinux1redhatcve1ubuntucve1debiancve1cve1openvas4rocky1fedora3redhat5ibm1