Lucene search

MitreCVE-2023-30571

HistoryMay 29, 2023 - 8:15 p.m.

CVE-2023-30571

2023-05-2920:15:09

CWE-362

mitre

web.nvd.nist.gov

cve-2023-30571

libarchive

directory permissions

umask

race condition

security vulnerability

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

AI Score

Confidence

High

EPSS

Percentile

5.1%

JSON

Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask() call inside archive_write_disk_posix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race condition could lead to implicit directory creation with permissions 0777 (without the sticky bit), which means that any low-privileged local user can delete and rename files inside those directories.

Affected configurations

Nvd

Node

libarchivelibarchiveRange≤3.6.2

VendorProductVersionCPE
libarchivelibarchive*cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
libarchive	libarchive	*	cpe:2.3:a:libarchive:libarchive::::::::

References

github.com/libarchive/libarchive/issues/1876

groups.google.com/g/libarchive-announce

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

AI Score

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVE-2023-30571