OpenCVE

libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of-bounds memory access during base64 decoding, leading to both authentication bypass and information disclosure; however, the exact attack surface will depend on the particular VCL (Varnish Configuration Language) configuration in use.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Libvmod Digest	Libvmod Digest
Varnish-software	Varnish Enterprise Vmod Digest

Configuration 1 [-]

OR	cpe:2.3:a:varnish-software:varnish_enterprise::::::::
	cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:-::::::
	cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r1::::::
	cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r2::::::
	cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r3::::::
	cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r4::::::
	cpe:2.3:a:varnish-software:vmod_digest::::::::

No data.

References

Link	Providers
https://docs.varnish-software.com/security/VSV00012/
https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3
https://www.varnish-cache.org/security/VSV00012.html

History

Thu, 03 Oct 2024 14:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Libvmod Digest Libvmod Digest libvmod Digest
CPEs		cpe:2.3:a:libvmod_digest:libvmod_digest::::::::
Vendors & Products		Libvmod Digest Libvmod Digest libvmod Digest
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-08-23T00:00:00

Updated: 2024-10-03T14:09:51.999Z

Reserved: 2023-08-23T00:00:00

Link: CVE-2023-41104

Vulnrichment

Updated: 2024-08-02T18:54:02.970Z

NVD

Status : Modified

Published: 2023-08-23T07:15:08.417

Modified: 2024-11-21T08:20:35.543

Link: CVE-2023-41104

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-41104", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-10-03T14:09:51.999Z", "dateReserved": "2023-08-23T00:00:00", "datePublished": "2023-08-23T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-08-23T06:15:14.646588"}, "descriptions": [{"lang": "en", "value": "libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of-bounds memory access during base64 decoding, leading to both authentication bypass and information disclosure; however, the exact attack surface will depend on the particular VCL (Varnish Configuration Language) configuration in use."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.varnish-cache.org/security/VSV00012.html"}, {"url": "https://docs.varnish-software.com/security/VSV00012/"}, {"url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:54:02.970Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.varnish-cache.org/security/VSV00012.html", "tags": ["x_transferred"]}, {"url": "https://docs.varnish-software.com/security/VSV00012/", "tags": ["x_transferred"]}, {"url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "libvmod_digest", "product": "libvmod_digest", "cpes": ["cpe:2.3:a:libvmod_digest:libvmod_digest:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "1.0.3", "versionType": "custom"}, {"version": "varnish_enterprise_6.0x", "status": "affected", "lessThan": "6.0.11r5", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-03T14:05:23.534570Z", "id": "CVE-2023-41104", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-03T14:09:51.999Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-41104", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-10-03T14:09:51.999Z", "dateReserved": "2023-08-23T00:00:00", "datePublished": "2023-08-23T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-08-23T06:15:14.646588"}, "descriptions": [{"lang": "en", "value": "libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of-bounds memory access during base64 decoding, leading to both authentication bypass and information disclosure; however, the exact attack surface will depend on the particular VCL (Varnish Configuration Language) configuration in use."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.varnish-cache.org/security/VSV00012.html"}, {"url": "https://docs.varnish-software.com/security/VSV00012/"}, {"url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:54:02.970Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.varnish-cache.org/security/VSV00012.html", "tags": ["x_transferred"]}, {"url": "https://docs.varnish-software.com/security/VSV00012/", "tags": ["x_transferred"]}, {"url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3", "tags": ["x_transferred"]}]}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-41104", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-03T14:05:23.534570Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:libvmod_digest:libvmod_digest:*:*:*:*:*:*:*:*"], "vendor": "libvmod_digest", "product": "libvmod_digest", "versions": [{"status": "affected", "version": "0", "lessThan": "1.0.3", "versionType": "custom"}, {"status": "affected", "version": "varnish_enterprise_6.0x", "lessThan": "6.0.11r5", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-03T14:09:21.393Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:*:*:*:*:*:*:*:*", "matchCriteriaId": "E51F4EF4-1AFE-4395-904D-FDDE83B19CFB", "versionEndExcluding": "6.0.11", "versionStartIncluding": "6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:-:*:*:*:*:*:*", "matchCriteriaId": "48190A61-CD4F-4C9D-8C82-13A14470BA58", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r1:*:*:*:*:*:*", "matchCriteriaId": "943E3FE8-EA6D-4500-8014-697A9A0CEF91", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r2:*:*:*:*:*:*", "matchCriteriaId": "F2CBF396-441D-44F2-BAFF-D3B2A981FBCD", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r3:*:*:*:*:*:*", "matchCriteriaId": "136343D5-80C1-4F83-8471-2C26F9FD492A", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:varnish_enterprise:6.0.11:r4:*:*:*:*:*:*", "matchCriteriaId": "A34B5F57-B86F-41CB-A3D8-9084960D3E45", "vulnerable": true}, {"criteria": "cpe:2.3:a:varnish-software:vmod_digest:*:*:*:*:*:*:*:*", "matchCriteriaId": "739EF024-4944-4B7B-8872-843CECF9F928", "versionEndExcluding": "1.0.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of-bounds memory access during base64 decoding, leading to both authentication bypass and information disclosure; however, the exact attack surface will depend on the particular VCL (Varnish Configuration Language) configuration in use."}], "id": "CVE-2023-41104", "lastModified": "2024-11-21T08:20:35.543", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-23T07:15:08.417", "references": [{"source": "cve@mitre.org", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://docs.varnish-software.com/security/VSV00012/"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.varnish-cache.org/security/VSV00012.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://docs.varnish-software.com/security/VSV00012/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/varnish/libvmod-digest/releases/tag/libvmod-digest-1.0.3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.varnish-cache.org/security/VSV00012.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}