fkie_cve-2023-5950
Vulnerability from fkie_nvd
Published
2023-11-06 15:15
Modified
2024-11-21 08:42
Severity ?
8.6 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a reflected cross site scripting vulnerability. This vulnerability allows attackers to inject JS into the error path, potentially leading to unauthorized execution of scripts within a user's web browser. This vulnerability is fixed in version 0.7.0-04 and a patch is available to download. Patches are also available for version 0.6.9 (0.6.9-1).
References
cve@rapid7.comhttps://github.com/Velocidex/velociraptor/releases/tag/v0.7.0Release Notes
af854a3a-2127-422b-91ae-364da2661108https://github.com/Velocidex/velociraptor/releases/tag/v0.7.0Release Notes
Impacted products
Vendor Product Version
rapid7 velociraptor *
rapid7 velociraptor 0.7.0
rapid7 velociraptor 0.7.0
rapid7 velociraptor 0.7.0-3


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:rapid7:velociraptor:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7DAD189-BBE9-4C38-ADAB-FF8882588753",
              "versionEndExcluding": "0.6.9-1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rapid7:velociraptor:0.7.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "85D700AC-8449-459C-A378-B47662BD1AEF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rapid7:velociraptor:0.7.0:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "74D69342-41E3-4E6A-9CF4-310ACD98FEB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rapid7:velociraptor:0.7.0-3:*:*:*:*:*:*:*",
              "matchCriteriaId": "18F58810-4E53-4085-A7EE-9343C1CBDD72",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a reflected cross site scripting vulnerability. This vulnerability allows attackers to inject JS into the error path, potentially leading to unauthorized execution of scripts within a user\u0027s web browser.\u00a0This vulnerability is fixed in\u00a0version 0.7.0-04 and a\u00a0patch is available to download. Patches are also available for version 0.6.9 (0.6.9-1).\n\n"
    },
    {
      "lang": "es",
      "value": "Las versiones de Rapid7 Velociraptor anteriores a 0.7.0-4 sufren de una vulnerabilidad de cross site scripting. Esta vulnerabilidad permite a los atacantes inyectar JS en la ruta del error, lo que podr\u00eda provocar la ejecuci\u00f3n no autorizada de scripts dentro del navegador web de un usuario. Esta vulnerabilidad se solucion\u00f3 en la versi\u00f3n 0.7.0-04 y hay un parche disponible para descargar. Tambi\u00e9n hay parches disponibles para la versi\u00f3n 0.6.9 (0.6.9-1)."
    }
  ],
  "id": "CVE-2023-5950",
  "lastModified": "2024-11-21T08:42:50.700",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 8.6,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 4.7,
        "source": "cve@rapid7.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-11-06T15:15:14.857",
  "references": [
    {
      "source": "cve@rapid7.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/Velocidex/velociraptor/releases/tag/v0.7.0"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/Velocidex/velociraptor/releases/tag/v0.7.0"
    }
  ],
  "sourceIdentifier": "cve@rapid7.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "cve@rapid7.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.