Lucene search

[email protected]NVD:CVE-2023-5369

HistoryOct 04, 2023 - 4:15 a.m.

CVE-2023-5369

2023-10-0404:15:14

CWE-273

[email protected]

web.nvd.nist.gov

vulnerability

privilege check

sandboxed processes

file descriptor

security issue

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS

Percentile

9.0%

JSON

Before correction, the copy_file_range system call checked only for the CAP_READ and CAP_WRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equivalent to seeking, and the system call must additionally require the CAP_SEEK capability.

This incorrect privilege check enabled sandboxed processes with only read or write but no seek capability on a file descriptor to read data from or write data to an arbitrary location within the file corresponding to that file descriptor.

Affected configurations

Nvd

Node

freebsdfreebsdMatch13.2-

VendorProductVersionCPE
freebsdfreebsd13.2cpe:2.3:o:freebsd:freebsd:13.2:-:*:*:*:*:*:*

Vendor	Product	Version	CPE
freebsd	freebsd	13.2	cpe:2.3:o:freebsd:freebsd:13.2:-::::::

References

security.FreeBSD.org/advisories/FreeBSD-SA-23:13.capsicum.asc

security.netapp.com/advisory/ntap-20231124-0009/

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-5369

nessus1 cvelist1 cve1 freebsd1 prion1 vulnrichment1 freebsd_advisory1