CVE-2023-36811

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Aug 30, 2023
Updated: Sep 15, 2023
CWE ID 347

Summary

CVE-2023-36811 is a vulnerability affecting borgbackup, an open-source deduplicating archiver. The flaw involves the cryptographic authentication scheme, allowing an attacker to create fake archives and potentially cause data loss in the repository. To exploit this vulnerability, the attacker needs write access to the repository and the ability to insert files into backups. Existing archive authenticity is not impacted, but creating plausible fake archives may be feasible for smaller archives. Users are advised to upgrade to borgbackup 1.2.5 and follow the upgrade procedure as documented in the change log to mitigate this risk. Data loss after an attack can be prevented by reviewing archives post-repair and before pruning. There are currently no known workarounds for this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share