CVE-2023-26143 - OpenCVE

Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile() API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the double-dash POSIX characters (--) to communicate the end of options.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Blamer Project	Blamer

Configuration 1 [-]

cpe:2.3:a:blamer_project:blamer:*:*:*:*:*:node.js:*:*

No data.

References

Link	Providers
https://gist.github.com/lirantal/14c3686370a86461f555d3f0703e02f9
https://github.com/kucherenko/blamer/commit/0965877f115753371a2570f10a63c455d2b2cde3
https://security.snyk.io/vuln/SNYK-JS-BLAMER-5731318

History

No history.

MITRE

Status: PUBLISHED

Assigner: snyk

Published: 2023-09-19T05:00:01.083Z

Updated: 2024-08-02T11:39:06.597Z

Reserved: 2023-02-20T10:28:48.928Z

Link: CVE-2023-26143

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-09-19T05:17:10.443

Modified: 2023-11-07T04:09:27.620

Link: CVE-2023-26143

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-26143", "assignerOrgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "state": "PUBLISHED", "assignerShortName": "snyk", "dateReserved": "2023-02-20T10:28:48.928Z", "datePublished": "2023-09-19T05:00:01.083Z", "dateUpdated": "2024-08-02T11:39:06.597Z"}, "containers": {"cna": {"metrics": [{"cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L/E:P"}}], "credits": [{"value": "Liran Tal", "lang": "en"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-88", "description": "Arbitrary Argument Injection", "lang": "en"}]}], "providerMetadata": {"orgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "shortName": "snyk", "dateUpdated": "2023-09-19T05:00:01.083Z"}, "descriptions": [{"value": "Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile() API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the double-dash POSIX characters (--) to communicate the end of options.", "lang": "en"}], "references": [{"url": "https://security.snyk.io/vuln/SNYK-JS-BLAMER-5731318"}, {"url": "https://gist.github.com/lirantal/14c3686370a86461f555d3f0703e02f9"}, {"url": "https://github.com/kucherenko/blamer/commit/0965877f115753371a2570f10a63c455d2b2cde3"}], "affected": [{"product": "blamer", "versions": [{"version": "0", "lessThan": "1.0.4", "status": "affected", "versionType": "semver"}], "vendor": "n/a"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T11:39:06.597Z"}, "title": "CVE Program Container", "references": [{"url": "https://security.snyk.io/vuln/SNYK-JS-BLAMER-5731318", "tags": ["x_transferred"]}, {"url": "https://gist.github.com/lirantal/14c3686370a86461f555d3f0703e02f9", "tags": ["x_transferred"]}, {"url": "https://github.com/kucherenko/blamer/commit/0965877f115753371a2570f10a63c455d2b2cde3", "tags": ["x_transferred"]}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:blamer_project:blamer:*:*:*:*:*:node.js:*:*", "matchCriteriaId": "A8E6FC04-030F-4B2D-9484-213E324BBB7A", "versionEndExcluding": "1.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile() API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the double-dash POSIX characters (--) to communicate the end of options."}, {"lang": "es", "value": "Las versiones del paquete blamer anteriores a 1.0.4 son vulnerables a la inyecci\u00f3n Arbitraria de Argumentos a trav\u00e9s de la API blameByFile(). La librer\u00eda no sanitiza la entrada del usuario ni valida que la ruta de archivo dada se ajuste a un esquema espec\u00edfico, ni pasa correctamente los indicadores de l\u00ednea de comandos al binario git utilizando los caracteres POSIX de doble gui\u00f3n (--) para comunicar el final de las opciones. "}], "id": "CVE-2023-26143", "lastModified": "2023-11-07T04:09:27.620", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 2.5, "source": "report@snyk.io", "type": "Secondary"}]}, "published": "2023-09-19T05:17:10.443", "references": [{"source": "report@snyk.io", "tags": ["Exploit", "Third Party Advisory"], "url": "https://gist.github.com/lirantal/14c3686370a86461f555d3f0703e02f9"}, {"source": "report@snyk.io", "tags": ["Patch"], "url": "https://github.com/kucherenko/blamer/commit/0965877f115753371a2570f10a63c455d2b2cde3"}, {"source": "report@snyk.io", "tags": ["Exploit", "Third Party Advisory"], "url": "https://security.snyk.io/vuln/SNYK-JS-BLAMER-5731318"}], "sourceIdentifier": "report@snyk.io", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-88"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-88"}], "source": "report@snyk.io", "type": "Secondary"}]}