CVE-2023-40050

EPSS 17.27%
Veröffentlicht 31.10.2023 15:15:09
Zuletzt bearbeitet 21.11.2024 08:18:36
Quelle security@progress.com
CVE-Watchlists
Login
Unerledigt
Login

Upload profile either
through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec
check command with maliciously crafted profile allows remote code execution.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Chef ≫ Automate Version <= 4.10.29

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	17.27%	0.949

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
security@progress.com	9.9	3.1	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://community.progress.com/s/article/Product-Alert-Bulletin-October-2023-CHEF-Automate-CVE-2023-40050

Vendor Advisory

https://docs.chef.io/automate/profiles/

Product

https://docs.chef.io/release_notes_automate/

Release Notes

https://nvd.nist.gov/vuln/detail/CVE-2023-40050

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-40050

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-40050

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-40050