CVE-2023-41334

Astropy is a project for astronomy in Python that fosters interoperability between Python astronomy packages. Version 5.3.2 of the Astropy core package is vulnerable to remote code execution due to improper input validation in the `TranformGraph().to_dot_graph` function. A malicious user can provide a command or a script file as a value to the `savelayout` argument, which will be placed as the first value in a list of arguments passed to `subprocess.Popen`. Although an error will be raised, the command or script will be executed successfully. Version 5.3.3 fixes this issue.
Configurations

No configuration.

History

21 Nov 2024, 08:21

Type Values Removed Values Added
Summary
  • (es) Astropy es un proyecto de astronomía en Python que fomenta la interoperabilidad entre paquetes de astronomía de Python. La versión 5.3.2 del paquete principal de Astropy es vulnerable a la ejecución remota de código debido a una validación de entrada incorrecta en la función `TranformGraph().to_dot_graph`. Un usuario malintencionado puede proporcionar un comando o un archivo de script como valor para el argumento `savelayout`, que se colocará como el primer valor en una lista de argumentos pasados a `subprocess.Popen`. Aunque se generará un error, el comando o script se ejecutará correctamente. La versión 5.3.3 soluciona este problema.
References () https://github.com/astropy/astropy/blob/9b97d98802ee4f5350a62b681c35d8687ee81d91/astropy/coordinates/transformations.py#L539 - () https://github.com/astropy/astropy/blob/9b97d98802ee4f5350a62b681c35d8687ee81d91/astropy/coordinates/transformations.py#L539 -
References () https://github.com/astropy/astropy/commit/22057d37b1313f5f5a9b5783df0a091d978dccb5 - () https://github.com/astropy/astropy/commit/22057d37b1313f5f5a9b5783df0a091d978dccb5 -
References () https://github.com/astropy/astropy/security/advisories/GHSA-h2x6-5jx5-46hf - () https://github.com/astropy/astropy/security/advisories/GHSA-h2x6-5jx5-46hf -

18 Mar 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-18 19:15

Updated : 2024-11-21 08:21


NVD link : CVE-2023-41334

Mitre link : CVE-2023-41334

CVE.ORG link : CVE-2023-41334


JSON object : View

Products Affected

No product.

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')