NN-2023:14-01
Unsafe temporary data privileges on Unix systems in Arc before v1.6.0
Last update: 2024-05-20
| Advisory ID | NN-2023:14-01 |
|---|---|
| Topic | Unsafe temporary data privileges on Unix systems in Arc before v1.6.0 |
| CWE Impact | CWE-732: Incorrect Permission Assignment for Critical Resource |
| Issue date | 2024-05-15 |
| Affects | Arc < v1.6.0 |
| CVE Name(s) | CVE-2023-5936 |
| CVSS Details | CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| CVSS Score | 7.3 (CVSS v4.0) 7.8 (CVSS v3.1) |
| CVE Risk Level | High (CVSS v4.0) High (CVSS v3.1) |
| Risk Level for Nozomi customers | High |
Summary
On Unix systems (Linux, MacOS), Arc uses a temporary file with unsafe privileges.
Impact
By tampering with such file, a malicious local user in the system may be able to trigger arbitrary code execution with root privileges.
Affected Products
Arc < v1.6.0
Workarounds and Mitigations
N/A
Solutions
Upgrade to v1.6.0 or later.
Modification History
2024-05-15: Initial revision
2024-05-20: Added CVSS v4.0 scoring where applicable
Related Links
Acknowledgements
We thank the following parties for their efforts:
- Diego Giubertoni of Nozomi Networks Security Research team for finding this issue during an internal penetration testing session
Contact
Nozomi Networks Product Security team can be reached at prodsec@nozominetworks.com.More contact details on the PSIRT page.