CVE-2023-22643

CWE-78OS Command Injection3 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 61.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Opensuse Opensuse Leap 15.4Suse Suse Linux Enterprise Server FOR SAP 15-sp3Opensuse Libzypp-plugin-appdata
Timeline
PublishedFeb 7

Description

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in libzypp-plugin-appdata of SUSE Linux Enterprise Server for SAP 15-SP3; openSUSE Leap 15.4 allows attackers that can trick users to use specially crafted REPO_ALIAS, REPO_TYPE or REPO_METADATA_PATH settings to execute code as root. This issue affects: SUSE Linux Enterprise Server for SAP 15-SP3 libzypp-plugin-appdata versions prior to 1.0.1+git.20180426. openSUSE Leap 15.4 libzypp-plugin

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:NExploitability: 1.0 | Impact: 5.2

Affected Packages3 packages

NVDopensuse/libzypp-plugin-appdata< 1.0.1\+git.20180426
CVEListV5suse/suse_linux_enterprise_server_for_sap_15-sp3libzypp-plugin-appdata1.0.1+git.20180426
CVEListV5opensuse/opensuse_leap_15.4libzypp-plugin-appdata1.0.1+git.20180426

Patches

Patch: bugzilla.suse.comPatch: bugzilla.suse.com

🔴Vulnerability Details

2
CVEList
libzypp-plugin-appdata: potential arbitrary code execution via shell injection due to `os.system` calls2023-02-07
GHSA
GHSA-7mcm-wrpj-6fwv: An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in libzypp-plugin-appdata of SUSE Linux En2023-02-07
CVE-2023-22643 (HIGH CVSS 7.8) | An Improper Neutralization of Speci | cvebase.io