CVE-2023-47104 - OpenCVE

tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a backquote or a dollar sign) in titles, messages, and other input data. NOTE: this issue exists because of an incomplete fix for CVE-2020-36767, which only considered single and double quote characters.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Linux	Linux Kernel
Vareille	Tiny File Dialogs

Configuration 1 [-]

AND

cpe:2.3:a:vareille:tiny_file_dialogs:*:*:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/servo/servo/issues/25498#issuecomment-703527082	Exploit Issue Tracking Third Party Advisory
https://sourceforge.net/p/tinyfiledialogs/code/ci/ac9f9f6d8cdf45ca8d9b4cf1f201ee472301e114/	Patch

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-10-30T00:00:00

Updated: 2023-10-30T18:23:17.984734

Reserved: 2023-10-30T00:00:00

Link: CVE-2023-47104

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-10-30T19:15:08.343

Modified: 2023-11-07T23:11:46.987

Link: CVE-2023-47104

JSON object: View

Redhat Information

No data.

CWE

CWE-78

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vareille:tiny_file_dialogs:*:*:*:*:*:*:*:*", "matchCriteriaId": "A12595AB-5C7B-4FF9-B116-69DCF0E24675", "versionEndExcluding": "3.15.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a backquote or a dollar sign) in titles, messages, and other input data. NOTE: this issue exists because of an incomplete fix for CVE-2020-36767, which only considered single and double quote characters."}, {"lang": "es", "value": "tinyfiledialogs (tambi\u00e9n conocido como di\u00e1logos de archivos peque\u00f1os) anteriores a 3.15.0 permite metacaracteres de shell (como comillas invertidas o un signo de d\u00f3lar) en t\u00edtulos, mensajes y otros datos de entrada. NOTA: este problema existe debido a una soluci\u00f3n incompleta para CVE-2020-36767, que solo consideraba comillas simples y dobles."}], "id": "CVE-2023-47104", "lastModified": "2023-11-07T23:11:46.987", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-10-30T19:15:08.343", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "url": "https://github.com/servo/servo/issues/25498#issuecomment-703527082"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://sourceforge.net/p/tinyfiledialogs/code/ci/ac9f9f6d8cdf45ca8d9b4cf1f201ee472301e114/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "nvd@nist.gov", "type": "Primary"}]}