Lucene search

RedhatCVE-2023-6395

HistoryJan 16, 2024 - 3:15 p.m.

CVE-2023-6395

2024-01-1615:15:08

CWE-20

redhat

web.nvd.nist.gov

mock

software

vulnerability

privilege escalation

jinja2

templates

configuration

parameters

build server

nvd

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.004

Percentile

74.6%

JSON

The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges. This weakness stems from the absence of proper sandboxing during the expansion and execution of Jinja2 templates, which may be included in certain configuration parameters. While the Mock documentation advises treating users added to the mock group as privileged, certain build systems invoking mock on behalf of users might inadvertently permit less privileged users to define configuration tags. These tags could then be passed as parameters to mock during execution, potentially leading to the utilization of Jinja2 templates for remote privilege escalation and the execution of arbitrary code as the root user on the build server.

Affected configurations

Nvd

Node

rpm-software-managementmockMatch-

Node

fedoraprojectextra_packages_for_enterprise_linuxMatch7.0

fedoraprojectextra_packages_for_enterprise_linuxMatch8.0

fedoraprojectextra_packages_for_enterprise_linuxMatch9.0

fedoraprojectfedoraMatch38

fedoraprojectfedoraMatch39

VendorProductVersionCPE
rpm-software-managementmock-cpe:2.3:a:rpm-software-management:mock:-:*:*:*:*:*:*:*
fedoraprojectextra_packages_for_enterprise_linux7.0cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*
fedoraprojectextra_packages_for_enterprise_linux8.0cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
fedoraprojectextra_packages_for_enterprise_linux9.0cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:9.0:*:*:*:*:*:*:*
fedoraprojectfedora38cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
fedoraprojectfedora39cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
rpm-software-management	mock	-	cpe:2.3:a:rpm-software-management:mock:-:::::::*
fedoraproject	extra_packages_for_enterprise_linux	7.0	cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:7.0:::::::*
fedoraproject	extra_packages_for_enterprise_linux	8.0	cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:::::::*
fedoraproject	extra_packages_for_enterprise_linux	9.0	cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:9.0:::::::*
fedoraproject	fedora	38	cpe:2.3:o:fedoraproject:fedora:38:::::::*
fedoraproject	fedora	39	cpe:2.3:o:fedoraproject:fedora:39:::::::*

CNA Affected

[
  {
    "product": "mock",
    "vendor": "n/a",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "mock",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "product": "Extra Packages for Enterprise Linux",
    "vendor": "Fedora",
    "collectionURL": "https://packages.fedoraproject.org/",
    "packageName": "mock",
    "defaultStatus": "affected"
  },
  {
    "product": "Fedora",
    "vendor": "Fedora",
    "collectionURL": "https://packages.fedoraproject.org/",
    "packageName": "mock",
    "defaultStatus": "affected"
  }
]