Weekly Vulnerabilities Reports > April 3 to 9, 2023
Overview
25 new vulnerabilities reported during this period, including 3 critical vulnerabilities and 14 high severity vulnerabilities. This weekly summary report vulnerabilities in 169 products from 18 vendors including F5, Linux, Apache, Golang, and ARM. Vulnerabilities are notably categorized as "Use After Free", "Out-of-bounds Read", "Out-of-bounds Write", "Improper Input Validation", and "Resource Exhaustion".
- 17 reported vulnerabilities are remotely exploitables.
- 3 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 15 reported vulnerabilities are exploitable by an anonymous user.
- F5 has the most reported vulnerabilities, with 4 reported vulnerabilities.
- Samsung has the most reported critical vulnerabilities, with 1 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
3 Critical Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2023-04-04 | CVE-2023-28613 | Samsung | Integer Overflow or Wraparound vulnerability in Samsung products An issue was discovered in Samsung Exynos Mobile Processor and Baseband Modem Processor for Exynos 1280, Exynos 2200, and Exynos Modem 5300. | 9.8 |
| 2023-04-04 | CVE-2023-1671 | Sophos | Command Injection vulnerability in Sophos web Appliance A pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance older than version 4.3.10.4 allows execution of arbitrary code. | 9.8 |
| 2023-04-03 | CVE-2022-43939 | Hitachi | Unspecified vulnerability in Hitachi Vantara Pentaho Business Analytics Server 9.4.0.0 Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2, including 8.3.x contain security restrictions using non-canonical URLs which can be circumvented. | 9.8 |
14 High Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2023-04-04 | CVE-2023-29323 | Openbsd Opensmtpd | ascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address. | 7.8 |
| 2023-04-03 | CVE-2023-1579 | GNU | Out-of-bounds Write vulnerability in GNU Binutils 2.39 Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64. | 7.8 |
| 2023-04-09 | CVE-2023-27727 | F5 | Out-of-bounds Read vulnerability in F5 NJS 0.7.10 Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_function_frame at src/njs_function.h. | 7.5 |
| 2023-04-09 | CVE-2023-27728 | F5 | Out-of-bounds Read vulnerability in F5 NJS 0.7.10 Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_dump_is_recursive at src/njs_vmcode.c. | 7.5 |
| 2023-04-09 | CVE-2023-27729 | F5 | Unspecified vulnerability in F5 NJS 0.7.10 Nginx NJS v0.7.10 was discovered to contain an illegal memcpy via the function njs_vmcode_return at src/njs_vmcode.c. | 7.5 |
| 2023-04-09 | CVE-2023-27730 | F5 | Out-of-bounds Read vulnerability in F5 NJS 0.7.10 Nginx NJS v0.7.10 was discovered to contain a segmentation violation via the function njs_lvlhsh_find at src/njs_lvlhsh.c. | 7.5 |
| 2023-04-07 | CVE-2023-28707 | Apache | Improper Input Validation vulnerability in Apache Apache-Airflow-Providers-Apache-Drill Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.This issue affects Apache Airflow Drill Provider: before 2.3.2. | 7.5 |
| 2023-04-07 | CVE-2023-28710 | Apache | Improper Input Validation vulnerability in Apache Apache-Airflow-Providers-Apache-Spark Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Spark Provider.This issue affects Apache Airflow Spark Provider: before 4.0.1. | 7.5 |
| 2023-04-06 | CVE-2023-24534 | Golang | Resource Exhaustion vulnerability in Golang GO HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs, potentially leading to a denial of service. | 7.5 |
| 2023-04-06 | CVE-2023-24536 | Golang | Allocation of Resources Without Limits or Throttling vulnerability in Golang GO Multipart form parsing can consume large amounts of CPU and memory when processing form inputs containing very large numbers of parts. | 7.5 |
| 2023-04-03 | CVE-2022-36440 | Frrouting | Reachable Assertion vulnerability in Frrouting 8.3 A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. | 7.5 |
| 2023-04-03 | CVE-2023-28625 | Openidc | NULL Pointer Dereference vulnerability in Openidc MOD Auth Openidc mod_auth_openidc is an authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. | 7.5 |
| 2023-04-03 | CVE-2022-43769 | Hitachi | Code Injection vulnerability in Hitachi Vantara Pentaho Business Analytics Server 9.4.0.0 Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x allow certain web services to set property values which contain Spring templates that are interpreted downstream. | 7.2 |
| 2023-04-05 | CVE-2023-1838 | Linux | Use After Free vulnerability in Linux Kernel A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. | 7.1 |
6 Medium Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2023-04-07 | CVE-2023-1801 | Tcpdump | Out-of-bounds Write vulnerability in Tcpdump 4.99.3 The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet. | 6.5 |
| 2023-04-03 | CVE-2023-0614 | Samba | Cleartext Storage of Sensitive Information vulnerability in Samba The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC. | 6.5 |
| 2023-04-05 | CVE-2023-1855 | Linux | Use After Free vulnerability in Linux Kernel A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). | 6.3 |
| 2023-04-03 | CVE-2023-1611 | Linux Fedoraproject | Use After Free vulnerability in multiple products A use-after-free flaw was found in btrfs_search_slot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information lea | 6.3 |
| 2023-04-07 | CVE-2022-43309 | Supermicro | Incorrect Permission Assignment for Critical Resource vulnerability in Supermicro products Supermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions. | 5.5 |
| 2023-04-04 | CVE-2023-23878 | Flippercode | Cross-site Scripting vulnerability in Flippercode WP Google MAP Auth. | 5.4 |
2 Low Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2023-04-06 | CVE-2022-46781 | ARM | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in ARM products An issue was discovered in the Arm Mali GPU Kernel Driver. | 3.3 |
| 2023-04-06 | CVE-2023-26083 | ARM | Memory Leak vulnerability in ARM products Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata. | 3.3 |