CVE-2023-43608 - OpenCVE

A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of Buildroot 2023.08.1 and dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Buildroot	Buildroot

Configuration 1 [-]

cpe:2.3:a:buildroot:buildroot:2023.08.1:*:*:*:*:*:*:*

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/12/11/1	Patch Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1845	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: talos

Published: 2023-12-05T11:30:10.151Z

Updated: 2023-12-05T18:00:08.166Z

Reserved: 2023-10-13T15:58:39.388Z

Link: CVE-2023-43608

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-05T12:15:42.467

Modified: 2023-12-11T15:25:39.170

Link: CVE-2023-43608

JSON object: View

Redhat Information

No data.

CWE

CWE-494

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:buildroot:buildroot:2023.08.1:*:*:*:*:*:*:*", "matchCriteriaId": "CF734410-BA22-45F7-AD10-CB28F69D1D81", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of Buildroot 2023.08.1 and dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder."}, {"lang": "es", "value": "Existe una vulnerabilidad de integridad de datos en la funcionalidad BR_NO_CHECK_HASH_FOR de Buildroot 2023.08.1 y el commit de desarrollo 622698d7847. Un ataque de intermediario especialmente manipulado puede provocar la ejecuci\u00f3n de comandos arbitrarios en el constructor."}], "id": "CVE-2023-43608", "lastModified": "2023-12-11T15:25:39.170", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "talos-cna@cisco.com", "type": "Secondary"}]}, "published": "2023-12-05T12:15:42.467", "references": [{"source": "talos-cna@cisco.com", "tags": ["Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/12/11/1"}, {"source": "talos-cna@cisco.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1845"}], "sourceIdentifier": "talos-cna@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-494"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-494"}], "source": "talos-cna@cisco.com", "type": "Secondary"}]}