CVE-2023-38633 — MEDIUM (5.5)

Q: How severe is CVE-2023-38633?

CVE-2023-38633 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-38633?

Check the references section above for vendor advisories and patch information. Affected products include: Gnome Librsvg, Fedoraproject Fedora, Debian Debian Linux.

Vulnerability Description

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Gnome	Librsvg	>= 2.42.3, < 2.46.6
Fedoraproject	Fedora	37
Debian	Debian Linux	11.0

Related Weaknesses (CWE)

CWE-22

References

http://seclists.org/fulldisclosure/2023/Jul/43Mailing ListNot ApplicableThird Party Advisory
http://www.openwall.com/lists/oss-security/2023/07/27/1ExploitMailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2023/09/06/10Mailing List
https://bugzilla.suse.com/show_bug.cgi?id=1213502Issue TrackingPatchThird Party Advisory
https://gitlab.gnome.org/GNOME/librsvg/-/issues/996ExploitIssue TrackingVendor Advisory
https://gitlab.gnome.org/GNOME/librsvg/-/releases/2.56.3Release Notes
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproThird Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproThird Party Advisory
https://news.ycombinator.com/item?id=37415799Issue TrackingThird Party Advisory
https://security.netapp.com/advisory/ntap-20230831-0011/Third Party Advisory
https://www.canva.dev/blog/engineering/when-url-parsers-disagree-cve-2023-38633/ExploitTechnical DescriptionThird Party Advisory
https://www.debian.org/security/2023/dsa-5484Third Party Advisory
http://seclists.org/fulldisclosure/2023/Jul/43Mailing ListNot ApplicableThird Party Advisory
http://www.openwall.com/lists/oss-security/2023/07/27/1ExploitMailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2023/09/06/10Mailing List

FAQ

What is CVE-2023-38633?

CVE-2023-38633 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demons...

How severe is CVE-2023-38633?

CVE-2023-38633 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-38633?

Check the references section above for vendor advisories and patch information. Affected products include: Gnome Librsvg, Fedoraproject Fedora, Debian Debian Linux.