CVE-2023-45198

ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
http://cvsweb.netbsd.org/bsdweb.cgi/src/libexec/ftpd/ftpcmd.y.diff?r1=1.94&r2=1.95	Patch
https://mail-index.netbsd.org/source-changes/2023/09/22/msg147669.html	Mailing List Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:netbsd:ftpd::::::::
	cpe:2.3:a:netbsd:tnftpd::::::::

History

No history.

Information

Published : 2023-10-05 05:15

Updated : 2023-10-11 17:15

NVD link : CVE-2023-45198

Mitre link : CVE-2023-45198

CVE.ORG link : CVE-2023-45198

JSON object : View

Products Affected

netbsd

ftpd
tnftpd

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-45198", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2023-10-05T05:15:42.257", "references": [{"url": "http://cvsweb.netbsd.org/bsdweb.cgi/src/libexec/ftpd/ftpcmd.y.diff?r1=1.94&r2=1.95", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "https://mail-index.netbsd.org/source-changes/2023/09/22/msg147669.html", "tags": ["Mailing List", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "ftpd before \"NetBSD-ftpd 20230930\" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable."}, {"lang": "es", "value": "ftpd antes de \"NetBSD-ftpd 20230930\" puede filtrar informaci\u00f3n sobre el sistema de archivos del host antes de la autenticaci\u00f3n mediante un comando MLSD o MLST. tnftpd (la versi\u00f3n port\u00e1til de NetBSD ftpd) anterior a 20231001 tambi\u00e9n es vulnerable."}], "lastModified": "2023-10-11T17:15:31.923", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:netbsd:ftpd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D23DFEC0-011A-4066-8D10-CF671F9A01D3", "versionEndExcluding": "2023-09-30"}, {"criteria": "cpe:2.3:a:netbsd:tnftpd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2404151-669D-403F-951D-7F4795BA2033", "versionEndExcluding": "2023-10-01"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

7.5 /10