CVE-2023-50268

jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/12/15/10	Mailing List Patch Third Party Advisory
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64771	Issue Tracking Mailing List
https://github.com/jqlang/jq/commit/c9a51565214eece8f1053089739aea73145bfd6b	Patch
https://github.com/jqlang/jq/pull/2804	Issue Tracking Patch
https://github.com/jqlang/jq/security/advisories/GHSA-7hmr-442f-qc8j	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:jqlang:jq:1.7:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-12-13 21:15

Updated : 2023-12-19 01:32

NVD link : CVE-2023-50268

Mitre link : CVE-2023-50268

CVE.ORG link : CVE-2023-50268

JSON object : View

Products Affected

jqlang

jq

CWE

CWE-787

Out-of-bounds Write

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-121

Stack-based Buffer Overflow

{"id": "CVE-2023-50268", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.5}]}, "published": "2023-12-13T21:15:09.360", "references": [{"url": "http://www.openwall.com/lists/oss-security/2023/12/15/10", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64771", "tags": ["Issue Tracking", "Mailing List"], "source": "security-advisories@github.com"}, {"url": "https://github.com/jqlang/jq/commit/c9a51565214eece8f1053089739aea73145bfd6b", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/jqlang/jq/pull/2804", "tags": ["Issue Tracking", "Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/jqlang/jq/security/advisories/GHSA-7hmr-442f-qc8j", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-120"}, {"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue."}, {"lang": "es", "value": "jq es un procesador JSON de l\u00ednea de comandos. La versi\u00f3n 1.7 es vulnerable al desbordamiento del b\u00fafer basado en pila en compilaciones que utilizan decNumber. La versi\u00f3n 1.7.1 contiene un parche para este problema."}], "lastModified": "2023-12-19T01:32:51.670", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:jqlang:jq:1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB4D6ED1-816E-4FB7-B9EE-188B66543156"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}