CVE-2023-5759 - OpenCVE

In Helix Core versions prior to 2023.2, an unauthenticated remote Denial of Service (DoS) via the buffer was identified. Reported by Jason Geffner.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Perforce	Helix Core

Configuration 1 [-]

cpe:2.3:a:perforce:helix_core:*:*:*:*:*:*:*:*

References

Link	Resource
https://perforce.com	Product

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: Perforce

Published: 2023-11-08T15:48:18.816Z

Updated: 2024-01-04T17:18:40.109Z

Reserved: 2023-10-24T21:49:40.705Z

Link: CVE-2023-5759

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-11-08T16:15:11.253

Modified: 2023-11-15T20:17:01.213

Link: CVE-2023-5759

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-5759", "assignerOrgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e", "state": "PUBLISHED", "assignerShortName": "Perforce", "dateReserved": "2023-10-24T21:49:40.705Z", "datePublished": "2023-11-08T15:48:18.816Z", "dateUpdated": "2024-01-04T17:18:40.109Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Helix Core", "vendor": "Helix", "versions": [{"lessThan": "2023.2", "status": "affected", "version": "0.0.0", "versionType": "semver"}, {"lessThan": "2023.1 Patch 2", "status": "affected", "version": "0.0.0", "versionType": "semver"}, {"lessThan": "2022.2 Patch 3", "status": "affected", "version": "0.0.0", "versionType": "semver"}, {"lessThan": "2022.1 Patch 6", "status": "affected", "version": "0.0.0", "versionType": "semver"}, {"lessThan": "2021.2 Patch 10", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">In Helix Core versions prior to 2023.2, an unauthenticated remote Denial of Service (DoS) via the buffer was identified. Reported by </span><span style=\"background-color: rgb(255, 255, 255);\">Jason Geffner</span><span style=\"background-color: rgb(255, 255, 255);\">. </span><span style=\"background-color: rgb(255, 255, 255);\"> </span><br>"}], "value": "In Helix Core versions prior to 2023.2, an unauthenticated remote Denial of Service (DoS) via the buffer was identified. Reported by Jason Geffner. \u00a0\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "description": "CWE-400 Uncontrolled Resource Consumption", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e", "shortName": "Perforce", "dateUpdated": "2024-01-04T17:18:40.109Z"}, "references": [{"url": "https://perforce.com"}], "source": {"discovery": "UNKNOWN"}, "title": "Unauthenticated Remote Denial-of-Service via Buffer in Helix Core", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}