CVE-2023-38633Path Traversal in Librsvg

CWE-22Path Traversal6 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
43.6%
top 2.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Gnome LibrsvgDebian LibrsvgDebian Linux+1 more
Timeline
PublishedJul 22
Latest updateAug 1

Description

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDgnome/librsvg2.42.32.46.6+6
debiandebian/librsvg< librsvg 2.54.7+dfsg-1~deb12u1 (bookworm)
Debiangnome/librsvg< 2.50.3+dfsg-1+deb11u1+3

Also affects: Debian Linux 11.0, 12.0, Fedora 37, 38

Patches

Patch: bugzilla.suse.comPatch: bugzilla.suse.com

🔴Vulnerability Details

2
OSV
CVE-2023-38633: A directory traversal problem in the URL decoder of librsvg before 22023-07-22
GHSA
GHSA-jf6v-gw88-w63q: A directory traversal problem in the URL decoder of librsvg before 22023-07-22

📋Vendor Advisories

3
Ubuntu
librsvg vulnerability2023-08-01
Red Hat
librsvg: Arbitrary file read when xinclude href has special characters2023-07-22
Debian
CVE-2023-38633: librsvg - A directory traversal problem in the URL decoder of librsvg before 2.56.3 could ...2023
CVE-2023-38633 — Path Traversal in Gnome Librsvg | cvebase