CVE-2023-51887
published 2024-01-24CVE-2023-51887: Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.47%
82.5th percentile
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ctan | mathtex | <= 1.05 | — |
| debian | mathtex | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Attack vector is a crafted string supplied via the application URL to Mathtex CGI endpoint, enabling remote command injection ↗
- ·Vulnerability affects Mathtex v1.05 and all prior versions; both Debian bookworm and bullseye remain unpatched (open) as of the tracked date ↗
- ·Debian scope is listed as 'local' in the security tracker, which may indicate local exploitation context or local package scope — verify against upstream advisory ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL
vendor_debian9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-663j-9vv5-mmf4: Command Injection vulnerability in Mathtex v
ghsa_unreviewed·2024-01-24
CVE-2023-51887 [CRITICAL] CWE-77 GHSA-663j-9vv5-mmf4: Command Injection vulnerability in Mathtex v
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
OSV
CVE-2023-51887: Command Injection vulnerability in Mathtex v
osv·2024-01-24·CVSS 9.8
CVE-2023-51887 [CRITICAL] CVE-2023-51887: Command Injection vulnerability in Mathtex v
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
Debian
CVE-2023-51887: mathtex - Command Injection vulnerability in Mathtex v.1.05 and before allows a remote att...
vendor_debian·2023·CVSS 9.8
CVE-2023-51887 [CRITICAL] CVE-2023-51887: mathtex - Command Injection vulnerability in Mathtex v.1.05 and before allows a remote att...
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
Scope: local
bookworm: open
bullseye: open
Suricata
ET EXPLOIT Viessmann Vitogate 300 Command Injection Attempt (CVE-2023-5702)
suricata·2024-03-15·CVSS 4.3
CVE-2023-5702 [MEDIUM] ET EXPLOIT Viessmann Vitogate 300 Command Injection Attempt (CVE-2023-5702)
ET EXPLOIT Viessmann Vitogate 300 Command Injection Attempt (CVE-2023-5702)
Rule: alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Viessmann Vitogate 300 Command Injection Attempt (CVE-2023-5702)"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"/cgi-bin/vitogate.cgi"; fast_pattern; http.content_type; content:"application/json"; http.request_body; content:"|7b 22|method|22 3a 20 22|put|22 2c 20 22|form|22 3a 20 22|"; startswith; content:"|22 2c 20 22|session|22 3a 20 22|"; within:60; content:"|22 2c 20 22|params|22 3a 20 7b 22|ipaddr|22 3a 20 22|"; within:60; content:"|3b|"; within:50; content:"|22 7d 7d|"; endswith; reference:cve,2023-5702; reference:url,www.exploit-db.com/exploits/51887; classtype:attempted-admin; sid:2051666; rev:1; metadata:affected_pro
No public exploits indexed.
No writeups or analysis indexed.
2024-01-24
Published