CVE-2023-31437

ADVISORY - nist

Summary

An issue was discovered in systemd 253. An attacker can modify a sealed log file such that, in some views, not all existing and sealed log messages are displayed. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

EPSS Score⁠: 0.00089 (0.389)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-354⁠

Improper Validation of Integrity Check Value

Impacted images

Advisories

NIST

CREATED

1 year ago

UPDATED

3 months ago

ADVISORY IDCVE-2023-31437⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

5.3medium

Debian

CREATED

1 year ago

UPDATED

6 days ago

ADVISORY IDCVE-2023-31437⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

1 year ago

UPDATED

7 months ago

ADVISORY IDCVE-2023-31437⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.3medium