CVE-2023-38316

EPSS 1.25%
Veröffentlicht 17.11.2023 06:15:33
Zuletzt bearbeitet 21.11.2024 08:13:18
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

An issue was discovered in OpenNDS Captive Portal before version 10.1.2. When the custom unescape callback is enabled, attackers can execute arbitrary OS commands by inserting them into the URL portion of HTTP GET requests. Affected OpenNDS Captive Portal before version 10.1.2 fixed in OpenWrt master, OpenWrt 23.05 and OpenWrt 22.03 on 28. August 2023 by updating OpenNDS to version 10.1.3.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Opennds ≫ Captive Portal Version < 10.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.25%	0.787

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-116 Improper Encoding or Escaping of Output

The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.

https://github.com/openNDS/openNDS/releases/tag/v10.1.2

Vendor Advisory

Release Notes

https://github.com/openwrt/routing/commit/0b19771fb2dd81e7c428759610aed583171eed80

https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-006-v4/#sthash.2vJg3d85.rwx82g1C.dpbs

https://nvd.nist.gov/vuln/detail/CVE-2023-38316

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-38316

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-38316

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-38316