CVE-2023-28447

2023-03-2821:15:11

Debian Security Bug Tracker

security-tracker.debian.org

smarty

php

vulnerability

javascript

attack

user data

web application

upgrade

version 3.1.48

version 4.3.1

unauthorized access

sensitive data

unauthorized actions

CVSS3

7.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

EPSS

0.002

Percentile

52.7%

JSON

Smarty is a template engine for PHP. In affected versions smarty did not properly escape javascript code. An attacker could exploit this vulnerability to execute arbitrary JavaScript code in the context of the user’s browser session. This may lead to unauthorized access to sensitive user data, manipulation of the web application’s behavior, or unauthorized actions performed on behalf of the user. Users are advised to upgrade to either version 3.1.48 or to 4.3.1 to resolve this issue. There are no known workarounds for this vulnerability.

OSVersionArchitecturePackageVersionFilename
Debian12allsmarty3<= 3.1.47-2smarty3_3.1.47-2_all.deb
Debian11allsmarty3<= 3.1.39-2+deb11u1smarty3_3.1.39-2+deb11u1_all.deb
Debian999allsmarty3< 3.1.48-1smarty3_3.1.48-1_all.deb
Debian12allsmarty4< 4.3.0-1+deb12u1smarty4_4.3.0-1+deb12u1_all.deb
Debian999allsmarty4< 4.3.1-1smarty4_4.3.1-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	smarty3	<= 3.1.47-2	smarty3_3.1.47-2_all.deb
Debian	11	all	smarty3	<= 3.1.39-2+deb11u1	smarty3_3.1.39-2+deb11u1_all.deb
Debian	999	all	smarty3	< 3.1.48-1	smarty3_3.1.48-1_all.deb
Debian	12	all	smarty4	< 4.3.0-1+deb12u1	smarty4_4.3.0-1+deb12u1_all.deb
Debian	999	all	smarty4	< 4.3.1-1	smarty4_4.3.1-1_all.deb