First published: Mon Aug 28 2023(Updated: )
An issue in the CPIO command of Busybox v1.33.2 allows attackers to execute a directory traversal.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
BusyBox | =1.30.1 | |
BusyBox | =1.33.2 | |
debian/busybox | <=1:1.30.1-6<=1:1.30.1-6+deb11u1<=1:1.35.0-4<=1:1.37.0-4 | |
=1.30.1 | ||
=1.33.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-39810 is an issue in the CPIO command of Busybox v1.33.2 that allows attackers to execute a directory traversal.
CVE-2023-39810 has a severity rating of 7.8 (high).
CVE-2023-39810 affects Busybox v1.30.1 and v1.33.2.
Attackers can exploit CVE-2023-39810 by executing a directory traversal.
For more information on CVE-2023-39810, you can visit the Busybox website and the blog post by Pentagrid.