CVE-2023-43630

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 20, 2023
Updated: Sep 28, 2023
CWE ID 328
CWE ID 522
CWE ID 922

Summary

CVE-2023-43630 is a vulnerability that affects multiple products, including those identified as 'syj3oM', 'syj3oN', 'syj3oO', 'syj3oP', 'syj3oU', 'syj3oV', 'syj3oW', 'syj3oX', 'syj3oQ', 'syj3oR', 'syj3oS', 'syj3oT', and 'syj3oY'. The vulnerability allows an attacker to modify the config partition without triggering the measured boot process. This issue is caused by the use of SHA1 PCRs instead of SHA256 for sealing/unsealing the "vault" key, as well as a specific code implementation in "measurefs.go" that only updates the SHA256 instance of PCR14. Fixing this issue alone would not solve the problem of incorrect measurement. The potential danger posed by this vulnerability is high, with a base severity rating of HIGH according to NIST's National Vulnerability Database (NVD). Organizations should apply necessary patches or updates to remediate this vulnerability and prevent unauthorized modifications to the config partition.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43630 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options