CVE-2023-40857 — Out-of-bounds Write in Yara

CWE-787 — Out-of-bounds Write CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources

Severity

8.8HIGHNVD

EPSS

2.5%

top 14.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Virustotal Yara

Timeline

PublishedAug 28

Latest updateAug 29

Description

Buffer Overflow vulnerability in VirusTotal yara v.4.3.2 allows a remote attacker to execute arbtirary code via the yr_execute_cod function in the exe.c component.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

▶NVDvirustotal/yara4.3.2

🔴Vulnerability Details

GHSA

GHSA-wr74-v8h4-7w2f: Buffer Overflow vulnerability in VirusTotal yara v↗2023-08-29

▶

CVEList

CVE-2023-40857: Buffer Overflow vulnerability in VirusTotal yara v↗2023-08-28

▶

OSV

CVE-2023-40857: Buffer Overflow vulnerability in VirusTotal yara v↗2023-08-28

▶

📋Vendor Advisories

Red Hat

yara: buffer overflow that allows a remote attacker to execute arbtirary code via the yr_execute_cod function↗2023-08-29

▶