CVE-2023-38346

An issue was discovered in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A developer using the "tarExtract" function may expect that the function will strip leading slashes from absolute paths or stop processing when encountering relative paths that are outside of the extraction path, unless otherwise forced. This could lead to unexpected and undocumented behavior, which in general could result in a directory traversal, and associated unexpected behavior.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:windriver:vxworks:6.9:*:*:*:*:*:*:*
cpe:2.3:o:windriver:vxworks:7.0:-:*:*:*:*:*:*

History

26 Sep 2023, 14:58

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
CPE cpe:2.3:o:windriver:vxworks:7.0:-:*:*:*:*:*:*
cpe:2.3:o:windriver:vxworks:6.9:*:*:*:*:*:*:*
First Time Windriver
Windriver vxworks
CWE CWE-22
References (MISC) https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2023-38346 - (MISC) https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2023-38346 - Patch, Vendor Advisory
References (MISC) https://www.pentagrid.ch/en/blog/wind-river-vxworks-tarextract-directory-traversal-vulnerability/ - (MISC) https://www.pentagrid.ch/en/blog/wind-river-vxworks-tarextract-directory-traversal-vulnerability/ - Exploit, Technical Description, Third Party Advisory
References (MISC) https://support2.windriver.com/index.php?page=security-notices - (MISC) https://support2.windriver.com/index.php?page=security-notices - Vendor Advisory

22 Sep 2023, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-22 19:15

Updated : 2023-09-26 14:58


NVD link : CVE-2023-38346

Mitre link : CVE-2023-38346


JSON object : View

Products Affected

windriver

  • vxworks
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')