Vulnerability Database

308,485

Total vulnerabilities in the database

CVE-2023-30577

AMANDA (Advanced Maryland Automatic Network Disk Archiver) before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705.

Published: Jul 26, 2023
Updated: Nov 5, 2025
CVE: CVE-2023-30577
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-88

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
zmanda / amanda	-	3.5.4

https://github.com/zmanda/amanda/releases/tag/tag-community-3.5.4
https://github.com/zmanda/amanda/security/advisories/GHSA-crrw-v393-h5q3
https://lists.debian.org/debian-lts-announce/2023/12/msg00003.html
https://lists.debian.org/debian-lts-announce/2024/09/msg00023.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7OITHG7FBD7HQRX2XT75GSGWB3D6XSZU/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YYGJJARVLRBMNWSNXKZBXZNX3M53OVPA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7OITHG7FBD7HQRX2XT75GSGWB3D6XSZU/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YYGJJARVLRBMNWSNXKZBXZNX3M53OVPA/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo