CVE-2023-38633

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files (on the local filesystem outside of the expected area), as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element.

Published: Jul 22, 2023
Updated: May 10, 2024
CVE: CVE-2023-38633
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
gnome / librsvg	2.48.0	2.48.11
gnome / librsvg	2.50.0	2.50.8
gnome / librsvg	2.52.0	2.52.10
gnome / librsvg	2.54.0	2.54.6
gnome / librsvg	2.55.0	2.55.3
gnome / librsvg	2.56.0	2.56.3
fedoraproject / fedora	38	38.x
gnome / librsvg	2.42.3	2.46.6
fedoraproject / fedora	37	37.x
debian / debian_linux	11.0	11.0.x
debian / debian_linux	12.0	12.0.x

http://seclists.org/fulldisclosure/2023/Jul/43
http://www.openwall.com/lists/oss-security/2023/07/27/1
http://www.openwall.com/lists/oss-security/2023/09/06/10
https://bugzilla.suse.com/show_bug.cgi?id=1213502
https://gitlab.gnome.org/GNOME/librsvg/-/issues/996
https://gitlab.gnome.org/GNOME/librsvg/-/releases/2.56.3
https://lists.fedoraproject.org/archives/list/[email protected]/message/422NTIHIEBRASIG2DWXYBH4ADYMHY626/
https://lists.fedoraproject.org/archives/list/[email protected]/message/R5BCXT5GW6RCL45ZUHUZR4CJG2BAFDVC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/422NTIHIEBRASIG2DWXYBH4ADYMHY626/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R5BCXT5GW6RCL45ZUHUZR4CJG2BAFDVC/
https://news.ycombinator.com/item?id=37415799
https://security.netapp.com/advisory/ntap-20230831-0011/
https://www.canva.dev/blog/engineering/when-url-parsers-disagree-cve-2023-38633/
https://www.debian.org/security/2023/dsa-5484

Vulnerability Database

289,697

CVE-2023-38633