CVE-2023-48310

Public Exploit

Ability to DoS the testing infrastructure by overwriting files

Description

TestingPlatform is a testing platform for Internet Security Standards. Prior to version 2.1.1, user input is not filtered correctly. Nmap options are accepted. In this particular case, the option to create log files is accepted in addition to a host name (and even without). A log file is created at the location specified. These files are created as root. If the file exists, the existing file is being rendered useless. This can result in denial of service. Additionally, input for scanning can be any CIDR blocks passed to nmap. An attacker can scan 0.0.0.0/0 or even local networks. Version 2.1.1 contains a patch for this issue.

References

Link	Tags
https://github.com/NC3-LU/TestingPlatform/security/advisories/GHSA-9fhc-f3mr-w6h6	exploit
https://github.com/NC3-LU/TestingPlatform/security/advisories/GHSA-mmpf-rw6c-67mm	vendor advisory
https://github.com/NC3-LU/TestingPlatform/commit/7b3e7ca869a4845aa7445f874c22c5929315c3a7	patch
https://github.com/NC3-LU/TestingPlatform/releases/tag/v2.1.1	release notes

Frequently Asked Questions

What is the severity of CVE-2023-48310?: CVE-2023-48310 has been scored as a critical severity vulnerability.
How to fix CVE-2023-48310?: To fix CVE-2023-48310, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-48310 being actively exploited in the wild?: It is possible that CVE-2023-48310 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-48310?: CVE-2023-48310 affects NC3-LU TestingPlatform.

Description

Category

CWE-20 – Improper Input Validation

References

Frequently Asked Questions