Lucene search

[email protected]NVD:CVE-2023-26122

HistoryApr 11, 2023 - 5:15 a.m.

CVE-2023-26122

2023-04-1105:15:07

CWE-265

CWE-1321

[email protected]

web.nvd.nist.gov

safe-eval

sandbox bypass

remote code execution

prototype pollution

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.011

Percentile

85.0%

JSON

All versions of the package safe-eval are vulnerable to Sandbox Bypass due to improper input sanitization. The vulnerability is derived from prototype pollution exploitation.
Exploiting this vulnerability might result in remote code execution (“RCE”).

Vulnerable functions:

defineGetter, stack(), toLocaleString(), propertyIsEnumerable.call(), valueOf().

Affected configurations

Nvd

Node

safe-eval_projectsafe-evalRange≤0.4.1node.js

VendorProductVersionCPE
safe-eval_projectsafe-eval*cpe:2.3:a:safe-eval_project:safe-eval:*:*:*:*:*:node.js:*:*

Vendor	Product	Version	CPE
safe-eval_project	safe-eval	*	cpe:2.3:a:safe-eval_project:safe-eval::::::node.js::*

References

gist.github.com/seongil-wi/2db6cb884e10137a93132b7f74879cce

github.com/hacksparrow/safe-eval/issues/27

github.com/hacksparrow/safe-eval/issues/31

github.com/hacksparrow/safe-eval/issues/32

github.com/hacksparrow/safe-eval/issues/33

github.com/hacksparrow/safe-eval/issues/34

github.com/hacksparrow/safe-eval/issues/35

security.snyk.io/vuln/SNYK-JS-SAFEEVAL-3373064

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.011

Percentile

85.0%

JSON

Related for NVD:CVE-2023-26122

cve1 cvelist1 osv2 prion1 veracode1 github1