CVE-2023-5631 - Vulnerability Details

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since Oct. 26, 2023.

Exploitation active

Automatable no

Technical Impact total

Vendors	Products
Debian	Debian Linux
Fedoraproject	Fedora
Roundcube	Webmail

Configuration 1 [-]

OR	cpe:2.3:a:roundcube:webmail::::::::
	cpe:2.3:a:roundcube:webmail::::::::
	cpe:2.3:a:roundcube:webmail::::::::

Configuration 2 [-]

OR	cpe:2.3:o:debian:debian_linux:10.0:::::::*
	cpe:2.3:o:debian:debian_linux:11.0:::::::*
	cpe:2.3:o:debian:debian_linux:12.0:::::::*
	cpe:2.3:o:fedoraproject:fedora:39:::::::*

No data.

References

Link	Providers
http://www.openwall.com/lists/oss-security/2023/11/01/1
http://www.openwall.com/lists/oss-security/2023/11/01/3
http://www.openwall.com/lists/oss-security/2023/11/17/2
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079
https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d
https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613
https://github.com/roundcube/roundcubemail/issues/9168
https://github.com/roundcube/roundcubemail/releases/tag/1.4.15
https://github.com/roundcube/roundcubemail/releases/tag/1.5.5
https://github.com/roundcube/roundcubemail/releases/tag/1.6.4
https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/
https://roundcube.net/news/2023/10/16/security-update-1.6.4-released
https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15
https://www.debian.org/security/2023/dsa-5531

History

Thu, 13 Feb 2025 17:30:00 +0000

Type	Values Removed	Values Added
Description	Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code.	Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code.

Mon, 03 Feb 2025 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2023-10-26'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: ESET

Published: 2023-10-18T14:51:18.443Z

Updated: 2025-02-13T17:25:41.281Z

Reserved: 2023-10-18T06:50:57.504Z

Link: CVE-2023-5631

Vulnrichment

Updated: 2024-08-02T08:07:32.513Z

NVD

Status : Analyzed

Published: 2023-10-18T15:15:08.727

Modified: 2025-03-19T20:57:50.170

Link: CVE-2023-5631

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-5631", "assignerOrgId": "4a9b9929-2450-4021-b7b9-469a0255b215", "state": "PUBLISHED", "assignerShortName": "ESET", "dateReserved": "2023-10-18T06:50:57.504Z", "datePublished": "2023-10-18T14:51:18.443Z", "dateUpdated": "2025-02-13T17:25:41.281Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Roundcubemail", "repo": "https://github.com/roundcube/roundcubemail", "vendor": "Roundcube", "versions": [{"lessThan": "1.6.3", "status": "affected", "version": "1.6.0", "versionType": "semver"}, {"lessThan": "1.5.4", "status": "affected", "version": "1.5.0", "versionType": "semver"}, {"lessThan": "1.5.14", "status": "affected", "version": "1.4.0", "versionType": "semver"}, {"status": "unaffected", "version": "1.6.4"}, {"status": "unaffected", "version": "1.5.5"}, {"status": "unaffected", "version": "1.5.15"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Matthieu Faou"}, {"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Denys Klymenko"}, {"lang": "en", "type": "remediation developer", "user": "00000000-0000-4000-9000-000000000000", "value": "Aleksander Machniak"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<div>Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.<br></div><div><br></div>"}], "value": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code."}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Actively used in the wild.\n\n<br>"}], "value": "Actively used in the wild."}], "impacts": [{"capecId": "CAPEC-592", "descriptions": [{"lang": "en", "value": "CAPEC-592 Stored XSS"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4a9b9929-2450-4021-b7b9-469a0255b215", "shortName": "ESET", "dateUpdated": "2023-11-17T15:06:13.428Z"}, "references": [{"url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"}, {"url": "https://github.com/roundcube/roundcubemail/issues/9168"}, {"url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"}, {"url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"}, {"url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"}, {"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"}, {"url": "https://www.debian.org/security/2023/dsa-5531"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"}], "source": {"discovery": "EXTERNAL"}, "title": "Stored XSS vulnerability in Roundcube", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:07:32.513Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/issues/9168", "tags": ["x_transferred"]}, {"url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d", "tags": ["x_transferred"]}, {"url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15", "tags": ["x_transferred"]}, {"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079", "tags": ["x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5531", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/3", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/17/2", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-5631", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2023-11-15T16:39:21.592115Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2023-10-26", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2023-5631"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-03T16:30:05.225Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/issues/9168", "tags": ["x_transferred"]}, {"url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released", "tags": ["x_transferred"]}, {"url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d", "tags": ["x_transferred"]}, {"url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15", "tags": ["x_transferred"]}, {"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079", "tags": ["x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5531", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/3", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/17/2", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:07:32.513Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-5631", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2023-11-15T16:39:21.592115Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2023-10-26", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2023-5631"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-03T16:29:06.371Z"}}], "cna": {"title": "Stored XSS vulnerability in Roundcube", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Matthieu Faou"}, {"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Denys Klymenko"}, {"lang": "en", "type": "remediation developer", "user": "00000000-0000-4000-9000-000000000000", "value": "Aleksander Machniak"}], "impacts": [{"capecId": "CAPEC-592", "descriptions": [{"lang": "en", "value": "CAPEC-592 Stored XSS"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/roundcube/roundcubemail", "vendor": "Roundcube", "product": "Roundcubemail", "versions": [{"status": "affected", "version": "1.6.0", "lessThan": "1.6.3", "versionType": "semver"}, {"status": "affected", "version": "1.5.0", "lessThan": "1.5.4", "versionType": "semver"}, {"status": "affected", "version": "1.4.0", "lessThan": "1.5.14", "versionType": "semver"}, {"status": "unaffected", "version": "1.6.4"}, {"status": "unaffected", "version": "1.5.5"}, {"status": "unaffected", "version": "1.5.15"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Actively used in the wild.", "supportingMedia": [{"type": "text/html", "value": "Actively used in the wild.\n\n<br>", "base64": false}]}], "references": [{"url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"}, {"url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"}, {"url": "https://github.com/roundcube/roundcubemail/issues/9168"}, {"url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"}, {"url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"}, {"url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"}, {"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"}, {"url": "https://www.debian.org/security/2023/dsa-5531"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"}, {"url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.", "supportingMedia": [{"type": "text/html", "value": "<div>Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.<br></div><div><br></div>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "4a9b9929-2450-4021-b7b9-469a0255b215", "shortName": "ESET", "dateUpdated": "2023-11-17T15:06:13.428Z"}}}, "cveMetadata": {"cveId": "CVE-2023-5631", "state": "PUBLISHED", "dateUpdated": "2025-02-13T17:25:41.281Z", "dateReserved": "2023-10-18T06:50:57.504Z", "assignerOrgId": "4a9b9929-2450-4021-b7b9-469a0255b215", "datePublished": "2023-10-18T14:51:18.443Z", "assignerShortName": "ESET"}, "dataVersion": "5.1"}

{"cisaActionDue": "2023-11-16", "cisaExploitAdd": "2023-10-26", "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.", "cisaVulnerabilityName": "Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "4A35A7DC-58C4-43F7-A66C-229B0A409224", "versionEndExcluding": "1.4.15", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "AF32BDE4-0C58-4D19-9E7C-CC0C0B22DF51", "versionEndExcluding": "1.5.5", "versionStartIncluding": "1.5.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "BBAB5ECE-B692-46C2-A3EF-6BC52E4F3C3B", "versionEndExcluding": "1.6.4", "versionStartIncluding": "1.6.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*", "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C", "vulnerable": true}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*", "matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code."}, {"lang": "es", "value": "Roundcube anterior a 1.4.15, 1.5.x anterior a 1.5.5 y 1.6.x anterior a 1.6.4 permiten almacenar XSS a trav\u00e9s de un mensaje de correo electr\u00f3nico HTML con un documento SVG manipulado debido al comportamiento de program/lib/Roundcube/rcube_washtml.php. Esto podr\u00eda permitir que un atacante remoto cargue c\u00f3digo JavaScript arbitrario."}], "id": "CVE-2023-5631", "lastModified": "2025-03-19T20:57:50.170", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security@eset.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-10-18T15:15:08.727", "references": [{"source": "security@eset.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"}, {"source": "security@eset.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"}, {"source": "security@eset.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"}, {"source": "security@eset.com", "tags": ["Mailing List", "Patch"], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"}, {"source": "security@eset.com", "tags": ["Patch"], "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"}, {"source": "security@eset.com", "tags": ["Patch"], "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"}, {"source": "security@eset.com", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/roundcube/roundcubemail/issues/9168"}, {"source": "security@eset.com", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"}, {"source": "security@eset.com", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"}, {"source": "security@eset.com", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"}, {"source": "security@eset.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"}, {"source": "security@eset.com", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"}, {"source": "security@eset.com", "tags": ["Release Notes"], "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"}, {"source": "security@eset.com", "tags": ["Release Notes"], "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"}, {"source": "security@eset.com", "tags": ["Mailing List"], "url": "https://www.debian.org/security/2023/dsa-5531"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Patch"], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Issue Tracking"], "url": "https://github.com/roundcube/roundcubemail/issues/9168"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://www.debian.org/security/2023/dsa-5531"}], "sourceIdentifier": "security@eset.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@eset.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Exploitation active

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object