CVE-2023-41138 - OpenCVE

The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Appsanywhere	Appsanywhere Client

Configuration 1 [-]

OR	cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.0:::::macos::
	cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.1:::::macos::
	cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.1:::::macos::
	cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.2:::::macos::
	cpe:2.3:a:appsanywhere:appsanywhere_client:1.6.0:::::macos::
	cpe:2.3:a:appsanywhere:appsanywhere_client:2.0.0:::::macos::

No data.

References

Link	Providers
https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory

History

Wed, 04 Sep 2024 15:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-269

MITRE

Status: PUBLISHED

Assigner: AppCheck

Published: 2023-11-09T15:05:24.035Z

Updated: 2024-09-04T13:38:11.911Z

Reserved: 2023-08-23T16:10:33.947Z

Link: CVE-2023-41138

Vulnrichment

Updated: 2024-08-02T18:54:02.984Z

NVD

Status : Modified

Published: 2023-11-09T15:15:08.550

Modified: 2024-09-04T14:35:04.757

Link: CVE-2023-41138

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-41138", "assignerOrgId": "2c188fdb-58e1-4908-8fce-3e437b94f1ae", "state": "PUBLISHED", "assignerShortName": "AppCheck", "dateReserved": "2023-08-23T16:10:33.947Z", "datePublished": "2023-11-09T15:05:24.035Z", "dateUpdated": "2024-09-04T13:38:11.911Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process."}], "affected": [{"vendor": "AppsAnywhere", "product": "AppsAnywhere Client", "defaultStatus": "unaffected", "versions": [{"version": "1.4.0", "status": "affected"}, {"version": "1.4.1", "status": "affected"}, {"version": "1.5.1", "status": "affected"}, {"version": "1.5.2", "status": "affected"}, {"version": "1.6.0", "status": "affected"}, {"version": "2.0.0", "status": "affected"}, {"version": "1.6.1", "status": "unaffected"}, {"version": "2.0.1", "status": "unaffected"}, {"version": "2.2.0", "status": "unaffected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Incorrect Privilege Assignment", "cweId": "CWE-226"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "baseScore": 7.5, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "value": "Gaelan Steele", "type": "finder"}], "references": [{"name": "AppsAnywhere Security Advisory", "url": "https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory"}], "providerMetadata": {"orgId": "2c188fdb-58e1-4908-8fce-3e437b94f1ae", "shortName": "AppCheck", "dateUpdated": "2023-11-09T15:05:24.035Z"}, "x_generator": {"engine": "cveClient/1.0.14"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:54:02.984Z"}, "title": "CVE Program Container", "references": [{"name": "AppsAnywhere Security Advisory", "url": "https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory", "tags": ["x_transferred"]}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-269", "lang": "en", "description": "CWE-269 Improper Privilege Management"}]}], "affected": [{"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.0:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.4.0", "status": "affected"}]}, {"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.1:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.4.1", "status": "affected"}]}, {"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.1:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.5.1", "status": "affected"}]}, {"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.2:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.5.2", "status": "affected"}]}, {"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.6.0:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.6.0", "status": "affected"}]}, {"vendor": "appsanywhere", "product": "appsanywhere_client", "cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:2.0.0:*:*:*:*:macos:*:*"], "defaultStatus": "unknown", "versions": [{"version": "2.0.0", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-04T13:35:31.902425Z", "id": "CVE-2023-41138", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-04T13:38:11.911Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory", "name": "AppsAnywhere Security Advisory", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:54:02.984Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-41138", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-09-04T13:35:31.902425Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.0:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "1.4.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.1:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "1.4.1"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.1:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "1.5.1"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.2:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "1.5.2"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:1.6.0:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "1.6.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:appsanywhere:appsanywhere_client:2.0.0:*:*:*:*:macos:*:*"], "vendor": "appsanywhere", "product": "appsanywhere_client", "versions": [{"status": "affected", "version": "2.0.0"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-04T13:37:39.928Z"}}], "cna": {"credits": [{"lang": "en", "type": "finder", "value": "Gaelan Steele"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H"}}], "affected": [{"vendor": "AppsAnywhere", "product": "AppsAnywhere Client", "versions": [{"status": "affected", "version": "1.4.0"}, {"status": "affected", "version": "1.4.1"}, {"status": "affected", "version": "1.5.1"}, {"status": "affected", "version": "1.5.2"}, {"status": "affected", "version": "1.6.0"}, {"status": "affected", "version": "2.0.0"}, {"status": "unaffected", "version": "1.6.1"}, {"status": "unaffected", "version": "2.0.1"}, {"status": "unaffected", "version": "2.2.0"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory", "name": "AppsAnywhere Security Advisory"}], "x_generator": {"engine": "cveClient/1.0.14"}, "descriptions": [{"lang": "en", "value": "The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-226", "description": "Incorrect Privilege Assignment"}]}], "providerMetadata": {"orgId": "2c188fdb-58e1-4908-8fce-3e437b94f1ae", "shortName": "AppCheck", "dateUpdated": "2023-11-09T15:05:24.035Z"}}}, "cveMetadata": {"cveId": "CVE-2023-41138", "state": "PUBLISHED", "dateUpdated": "2024-09-04T13:38:11.911Z", "dateReserved": "2023-08-23T16:10:33.947Z", "assignerOrgId": "2c188fdb-58e1-4908-8fce-3e437b94f1ae", "datePublished": "2023-11-09T15:05:24.035Z", "assignerShortName": "AppCheck"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.0:*:*:*:*:macos:*:*", "matchCriteriaId": "5694A750-1829-415C-B065-2C2A08DF2E4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.1:*:*:*:*:macos:*:*", "matchCriteriaId": "4050A29D-EBB7-468A-B1B5-89DC9A6704DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.1:*:*:*:*:macos:*:*", "matchCriteriaId": "2B8B2F87-807B-4B88-8B81-F77D90EFB4E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.2:*:*:*:*:macos:*:*", "matchCriteriaId": "5B09E01F-FAA8-424D-8568-371A0B2B8B93", "vulnerable": true}, {"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:1.6.0:*:*:*:*:macos:*:*", "matchCriteriaId": "5149EA76-2BBC-4AF6-8F41-9EFBADF669F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:appsanywhere:appsanywhere_client:2.0.0:*:*:*:*:macos:*:*", "matchCriteriaId": "77E0BED8-DD64-47CD-9805-8020DA91D04E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process."}, {"lang": "es", "value": "Un proceso de usuario local puede enga\u00f1ar al asistente con privilegios de cliente de AppsAnywhere macOS para que ejecute comandos arbitrarios con permisos elevados."}], "id": "CVE-2023-41138", "lastModified": "2024-09-04T14:35:04.757", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 6.0, "source": "info@appcheck-ng.com", "type": "Secondary"}]}, "published": "2023-11-09T15:15:08.550", "references": [{"source": "info@appcheck-ng.com", "tags": ["Vendor Advisory"], "url": "https://docs.appsanywhere.com/appsanywhere/3.1/2023-11-security-advisory"}], "sourceIdentifier": "info@appcheck-ng.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-226"}], "source": "info@appcheck-ng.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-269"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}