CVE-2023-5607

An improper limitation of a path name to a restricted directory (path traversal) vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI reputation file. The attacker would need the appropriate privileges to access the relevant section of the User Interface. The import logic has been updated to restrict file types and content.

CVSS v3 8.4 HIGH

8.4^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.7 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://kcm.trellix.com/corporate/index?page=content&id=SB10411	Vendor Advisory
https://kcm.trellix.com/corporate/index?page=content&id=SB10411	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:trellix:application_and_change_control:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:42

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.2~~	v2 : unknown v3 : 8.4
References	~~() https://kcm.trellix.com/corporate/index?page=content&id=SB10411 - Vendor Advisory~~	() https://kcm.trellix.com/corporate/index?page=content&id=SB10411 - Vendor Advisory

01 Dec 2023, 19:09

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.2
References	~~() https://kcm.trellix.com/corporate/index?page=content&id=SB10411 -~~	() https://kcm.trellix.com/corporate/index?page=content&id=SB10411 - Vendor Advisory
CPE		cpe:2.3:a:trellix:application_and_change_control::::::::

27 Nov 2023, 13:52

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-11-27 11:15

Updated : 2024-11-21 08:42

NVD link : CVE-2023-5607

Mitre link : CVE-2023-5607

CVE.ORG link : CVE-2023-5607

JSON object : View

Products Affected

trellix

application_and_change_control

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2023-5607", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "trellixpsirt@trellix.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.7}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2023-11-27T11:15:08.133", "references": [{"url": "https://kcm.trellix.com/corporate/index?page=content&id=SB10411", "tags": ["Vendor Advisory"], "source": "trellixpsirt@trellix.com"}, {"url": "https://kcm.trellix.com/corporate/index?page=content&id=SB10411", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "trellixpsirt@trellix.com", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "\nAn improper limitation of a path name to a restricted directory (path traversal) vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI reputation file. The attacker would need the appropriate privileges to access the relevant section of the User Interface. The import logic has been updated to restrict file types and content. \n\n"}, {"lang": "es", "value": "Una limitaci\u00f3n inadecuada de un nombre de ruta a una vulnerabilidad de directorio restringido (path traversal) en la extensi\u00f3n TACC ePO, para servidores de ePO locales, antes de la versi\u00f3n 8.4.0 podr\u00eda llevar a que un atacante administrador autorizado ejecute c\u00f3digo arbitrario mediante la carga de un archivo especialmente manipulado. Archivo de reputaci\u00f3n GTI. El atacante necesitar\u00eda los privilegios adecuados para acceder a la secci\u00f3n correspondiente de la interfaz de usuario. La l\u00f3gica de importaci\u00f3n se ha actualizado para restringir los tipos de archivos y el contenido."}], "lastModified": "2024-11-21T08:42:06.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:trellix:application_and_change_control:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6635B7C-5692-4A03-BB70-1D48EF826D93", "versionEndExcluding": "8.4.0"}], "operator": "OR"}]}], "sourceIdentifier": "trellixpsirt@trellix.com"}