CVE-2023-3527 - OpenCVE

A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web application which allows a user with administrative privileges to input crafted data which, when exported to a CSV file, may attempt arbitrary command execution on the system used to open the file by a spreadsheet software such as Microsoft Excel.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Avaya	Call Management System

Configuration 1 [-]

cpe:2.3:a:avaya:call_management_system:*:*:*:*:*:*:*:*

References

Link	Resource
https://download.avaya.com/css/public/documents/101086364	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: avaya

Published: 2023-07-18T21:10:36.841Z

Updated: 2023-07-18T21:10:36.841Z

Reserved: 2023-07-06T16:01:05.440Z

Link: CVE-2023-3527

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-07-18T22:15:09.847

Modified: 2023-07-28T22:17:17.167

Link: CVE-2023-3527

JSON object: View

Redhat Information

No data.

CWE

CWE-1236

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-3527", "assignerOrgId": "9d670455-bdb5-4cca-a883-5914865f5d96", "state": "PUBLISHED", "assignerShortName": "avaya", "dateReserved": "2023-07-06T16:01:05.440Z", "datePublished": "2023-07-18T21:10:36.841Z", "dateUpdated": "2023-07-18T21:10:36.841Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Avaya Call Management System", "vendor": "Avaya", "versions": [{"status": "affected", "version": "19.x.x.x"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web application which allows a user with administrative privileges to input crafted data which, when exported to a CSV file, may attempt arbitrary command execution on the system used to open the file by a spreadsheet software \n\n<span style=\"background-color: rgb(252, 252, 252);\">such as Microsoft Excel</span>.\n\n <br><br>"}], "value": "A CSV injection vulnerability was found in the\u00a0Avaya Call Management System (CMS) Supervisor web application which allows a user with administrative privileges to input crafted data which, when exported to a CSV file, may attempt arbitrary command execution on the system used to open the file by a spreadsheet software \n\nsuch as Microsoft Excel.\n\n\u00a0\n\n"}], "impacts": [{"capecId": "CAPEC-23", "descriptions": [{"lang": "en", "value": "CAPEC-23 File Content Injection"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1236", "description": "CWE-1236 Improper Neutralization of Formula Elements in a CSV File", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "9d670455-bdb5-4cca-a883-5914865f5d96", "shortName": "avaya", "dateUpdated": "2023-07-18T21:10:36.841Z"}, "references": [{"url": "https://download.avaya.com/css/public/documents/101086364"}], "source": {"defect": ["CMS-7027"], "discovery": "EXTERNAL"}, "title": "Avaya Call Management System CSV injection vulnerability", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}