cvelistv5 - cve-2023-5631

CVE-2023-5631 (GCVE-0-2023-5631)

Vulnerability from cvelistv5

Published

2023-10-18 14:51

Modified

2025-10-21 23:05

Severity ?

6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Summary

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker to load arbitrary JavaScript code.

References

URL

	Vendor	Product	Version
	Roundcube	Roundcubemail	Version: 1.6.0 ≤ Version: 1.5.0 ≤ Version: 1.4.0 ≤

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Date added: 2023-10-26

Due date: 2023-11-16

Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Used in ransomware: Unknown

Notes: https://roundcube.net/news/2023/10/16/security-update-1.6.4-released, https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15 ; https://nvd.nist.gov/vuln/detail/CVE-2023-5631

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:07:32.513Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/issues/9168"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5531"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-5631",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2023-11-15T16:39:21.592115Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2023-10-26",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:05:34.074Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2023-10-26T00:00:00+00:00",
            "value": "CVE-2023-5631 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Roundcubemail",
          "repo": "https://github.com/roundcube/roundcubemail",
          "vendor": "Roundcube",
          "versions": [
            {
              "lessThan": "1.6.3",
              "status": "affected",
              "version": "1.6.0",
              "versionType": "semver"
            },
            {
              "lessThan": "1.5.4",
              "status": "affected",
              "version": "1.5.0",
              "versionType": "semver"
            },
            {
              "lessThan": "1.5.14",
              "status": "affected",
              "version": "1.4.0",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "1.6.4"
            },
            {
              "status": "unaffected",
              "version": "1.5.5"
            },
            {
              "status": "unaffected",
              "version": "1.5.15"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Matthieu Faou"
        },
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Denys Klymenko"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Aleksander Machniak"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cdiv\u003eRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
            }
          ],
          "value": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Actively used in the wild.\n\n\u003cbr\u003e"
            }
          ],
          "value": "Actively used in the wild."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-592",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-592 Stored XSS"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-17T15:06:13.428Z",
        "orgId": "4a9b9929-2450-4021-b7b9-469a0255b215",
        "shortName": "ESET"
      },
      "references": [
        {
          "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
        },
        {
          "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
        },
        {
          "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
        },
        {
          "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
        },
        {
          "url": "https://github.com/roundcube/roundcubemail/issues/9168"
        },
        {
          "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
        },
        {
          "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
        },
        {
          "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
        },
        {
          "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
        },
        {
          "url": "https://www.debian.org/security/2023/dsa-5531"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Stored XSS vulnerability in Roundcube",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "4a9b9929-2450-4021-b7b9-469a0255b215",
    "assignerShortName": "ESET",
    "cveId": "CVE-2023-5631",
    "datePublished": "2023-10-18T14:51:18.443Z",
    "dateReserved": "2023-10-18T06:50:57.504Z",
    "dateUpdated": "2025-10-21T23:05:34.074Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2023-5631",
      "cwes": "[\"CWE-79\"]",
      "dateAdded": "2023-10-26",
      "dueDate": "2023-11-16",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released, https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15 ;  https://nvd.nist.gov/vuln/detail/CVE-2023-5631",
      "product": "Webmail",
      "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
      "shortDescription": "Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.",
      "vendorProject": "Roundcube",
      "vulnerabilityName": "Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-5631\",\"sourceIdentifier\":\"security@eset.com\",\"published\":\"2023-10-18T15:15:08.727\",\"lastModified\":\"2025-10-30T20:11:10.923\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\\n\\nto load arbitrary JavaScript code.\"},{\"lang\":\"es\",\"value\":\"Roundcube anterior a 1.4.15, 1.5.x anterior a 1.5.5 y 1.6.x anterior a 1.6.4 permiten almacenar XSS a trav\u00e9s de un mensaje de correo electr\u00f3nico HTML con un documento SVG manipulado debido al comportamiento de program/lib/Roundcube/rcube_washtml.php. Esto podr\u00eda permitir que un atacante remoto cargue c\u00f3digo JavaScript arbitrario.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@eset.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}]},\"cisaExploitAdd\":\"2023-10-26\",\"cisaActionDue\":\"2023-11-16\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability\",\"weaknesses\":[{\"source\":\"security@eset.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.4.15\",\"matchCriteriaId\":\"4A35A7DC-58C4-43F7-A66C-229B0A409224\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.5.0\",\"versionEndExcluding\":\"1.5.5\",\"matchCriteriaId\":\"AF32BDE4-0C58-4D19-9E7C-CC0C0B22DF51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.6.0\",\"versionEndExcluding\":\"1.6.4\",\"matchCriteriaId\":\"BBAB5ECE-B692-46C2-A3EF-6BC52E4F3C3B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D69DCC-AE4D-4EA5-861C-D60951444C6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/01/1\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/01/3\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/17/2\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d\",\"source\":\"security@eset.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613\",\"source\":\"security@eset.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/issues/9168\",\"source\":\"security@eset.com\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.4.15\",\"source\":\"security@eset.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.5.5\",\"source\":\"security@eset.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.6.4\",\"source\":\"security@eset.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://roundcube.net/news/2023/10/16/security-update-1.6.4-released\",\"source\":\"security@eset.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15\",\"source\":\"security@eset.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5531\",\"source\":\"security@eset.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/01/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/01/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/11/17/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/issues/9168\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.4.15\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.5.5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/roundcube/roundcubemail/releases/tag/1.6.4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://roundcube.net/news/2023/10/16/security-update-1.6.4-released\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5531\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.6.4\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.5.5\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.4.15\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/roundcube/roundcubemail/issues/9168\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://roundcube.net/news/2023/10/16/security-update-1.6.4-released\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5531\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/01/1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/01/3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/17/2\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T08:07:32.513Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-5631\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2023-11-15T16:39:21.592115Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2023-10-26\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2023-10-26T00:00:00+00:00\", \"value\": \"CVE-2023-5631 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-03T16:29:06.371Z\"}}], \"cna\": {\"title\": \"Stored XSS vulnerability in Roundcube\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Matthieu Faou\"}, {\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Denys Klymenko\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Aleksander Machniak\"}], \"impacts\": [{\"capecId\": \"CAPEC-592\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-592 Stored XSS\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"repo\": \"https://github.com/roundcube/roundcubemail\", \"vendor\": \"Roundcube\", \"product\": \"Roundcubemail\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.6.0\", \"lessThan\": \"1.6.3\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.5.0\", \"lessThan\": \"1.5.4\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.4.0\", \"lessThan\": \"1.5.14\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"1.6.4\"}, {\"status\": \"unaffected\", \"version\": \"1.5.5\"}, {\"status\": \"unaffected\", \"version\": \"1.5.15\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"Actively used in the wild.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Actively used in the wild.\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"references\": [{\"url\": \"https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613\"}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.6.4\"}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.5.5\"}, {\"url\": \"https://github.com/roundcube/roundcubemail/releases/tag/1.4.15\"}, {\"url\": \"https://github.com/roundcube/roundcubemail/issues/9168\"}, {\"url\": \"https://roundcube.net/news/2023/10/16/security-update-1.6.4-released\"}, {\"url\": \"https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d\"}, {\"url\": \"https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15\"}, {\"url\": \"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079\"}, {\"url\": \"https://www.debian.org/security/2023/dsa-5531\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/01/1\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/01/3\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/11/17/2\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\\n\\nto load arbitrary JavaScript code.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cdiv\u003eRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\\n\\nto load arbitrary JavaScript code.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-79\", \"description\": \"CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"4a9b9929-2450-4021-b7b9-469a0255b215\", \"shortName\": \"ESET\", \"dateUpdated\": \"2023-11-17T15:06:13.428Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-5631\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:05:34.074Z\", \"dateReserved\": \"2023-10-18T06:50:57.504Z\", \"assignerOrgId\": \"4a9b9929-2450-4021-b7b9-469a0255b215\", \"datePublished\": \"2023-10-18T14:51:18.443Z\", \"assignerShortName\": \"ESET\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

ghsa-qf8f-27cp-gw76

Vulnerability from github

Published

2023-10-18 15:30

Modified

2025-10-22 00:32

Severity ?

6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

to load arbitrary JavaScript code.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-5631"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-10-18T15:15:08Z",
    "severity": "MODERATE"
  },
  "details": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.",
  "id": "GHSA-qf8f-27cp-gw76",
  "modified": "2025-10-22T00:32:51Z",
  "published": "2023-10-18T15:30:24Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5631"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/issues/9168"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
    },
    {
      "type": "WEB",
      "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
    },
    {
      "type": "WEB",
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4"
    },
    {
      "type": "WEB",
      "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
    },
    {
      "type": "WEB",
      "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2023/dsa-5531"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2023-2657

Vulnerability from csaf_certbund

Published

2023-10-16 22:00

Modified

2024-06-25 22:00

Summary

Roundcube: Schwachstelle ermöglicht Cross-Site Scripting

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Roundcube ist ein Open-Source Webmailsystem, basierend auf PHP.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Roundcube ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Roundcube ist ein Open-Source Webmailsystem, basierend auf PHP.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Roundcube ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2657 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2657.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2657 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2657"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244535"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5531 vom 2023-10-23",
        "url": "https://lists.debian.org/debian-security-announce/2023/msg00227.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3630 vom 2023-10-25",
        "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
      },
      {
        "category": "external",
        "summary": "Known Exploited Vulnerabilities Catalog vom 2023-10-26",
        "url": "https://www.cisa.gov/news-events/alerts/2023/10/26/cisa-adds-one-known-exploited-vulnerability-catalog"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6848-1 vom 2024-06-26",
        "url": "https://ubuntu.com/security/notices/USN-6848-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Roundcube: Schwachstelle erm\u00f6glicht Cross-Site Scripting",
    "tracking": {
      "current_release_date": "2024-06-25T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:59:55.436+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2657",
      "initial_release_date": "2023-10-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-10-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-10-18T22:00:00.000+00:00",
          "number": "2",
          "summary": "CVE erg\u00e4nzt"
        },
        {
          "date": "2023-10-22T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-10-24T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-10-26T22:00:00.000+00:00",
          "number": "5",
          "summary": "Exploit aufgenommen"
        },
        {
          "date": "2024-06-25T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.6.4",
                "product": {
                  "name": "Open Source Roundcube \u003c1.6.4",
                  "product_id": "T030548"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.5.5",
                "product": {
                  "name": "Open Source Roundcube \u003c1.5.5",
                  "product_id": "T030552"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.4.15",
                "product": {
                  "name": "Open Source Roundcube \u003c1.4.15",
                  "product_id": "T030553"
                }
              }
            ],
            "category": "product_name",
            "name": "Roundcube"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5631",
      "notes": [
        {
          "category": "description",
          "text": "In Roundcube existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in Behandlung von SVG in HTML-Meldungen nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T000126"
        ]
      },
      "release_date": "2023-10-16T22:00:00.000+00:00",
      "title": "CVE-2023-5631"
    }
  ]
}

wid-sec-w-2023-2657

Vulnerability from csaf_certbund

Published

2023-10-16 22:00

Modified

2024-06-25 22:00

Summary

Roundcube: Schwachstelle ermöglicht Cross-Site Scripting

Notes

Produktbeschreibung

Roundcube ist ein Open-Source Webmailsystem, basierend auf PHP.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Roundcube ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Roundcube ist ein Open-Source Webmailsystem, basierend auf PHP.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Roundcube ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2657 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2657.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2657 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2657"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244535"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
      },
      {
        "category": "external",
        "summary": "Roundcube Security Release vom 2023-10-16",
        "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5531 vom 2023-10-23",
        "url": "https://lists.debian.org/debian-security-announce/2023/msg00227.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3630 vom 2023-10-25",
        "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
      },
      {
        "category": "external",
        "summary": "Known Exploited Vulnerabilities Catalog vom 2023-10-26",
        "url": "https://www.cisa.gov/news-events/alerts/2023/10/26/cisa-adds-one-known-exploited-vulnerability-catalog"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6848-1 vom 2024-06-26",
        "url": "https://ubuntu.com/security/notices/USN-6848-1"
      }
    ],
    "source_lang": "en-US",
    "title": "Roundcube: Schwachstelle erm\u00f6glicht Cross-Site Scripting",
    "tracking": {
      "current_release_date": "2024-06-25T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:59:55.436+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2657",
      "initial_release_date": "2023-10-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-10-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-10-18T22:00:00.000+00:00",
          "number": "2",
          "summary": "CVE erg\u00e4nzt"
        },
        {
          "date": "2023-10-22T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-10-24T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-10-26T22:00:00.000+00:00",
          "number": "5",
          "summary": "Exploit aufgenommen"
        },
        {
          "date": "2024-06-25T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.6.4",
                "product": {
                  "name": "Open Source Roundcube \u003c1.6.4",
                  "product_id": "T030548"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.5.5",
                "product": {
                  "name": "Open Source Roundcube \u003c1.5.5",
                  "product_id": "T030552"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.4.15",
                "product": {
                  "name": "Open Source Roundcube \u003c1.4.15",
                  "product_id": "T030553"
                }
              }
            ],
            "category": "product_name",
            "name": "Roundcube"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5631",
      "notes": [
        {
          "category": "description",
          "text": "In Roundcube existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in Behandlung von SVG in HTML-Meldungen nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T000126"
        ]
      },
      "release_date": "2023-10-16T22:00:00.000+00:00",
      "title": "CVE-2023-5631"
    }
  ]
}

CERTFR-2023-AVI-0893

Vulnerability from certfr_avis

Une vulnérabilité a été découverte dans Roundcube Webmail. Elle permet à un attaquant de provoquer une injection de code indirecte à distance (XSS).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Roundcube	Roundcube Webmail	Roundcube Webmail versions 1.6.x antérieures à 1.6.4
Roundcube	Roundcube Webmail	Roundcube Webmail versions 1.4.x antérieures à 1.4.15
Roundcube	Roundcube Webmail	Roundcube Webmail versions 1.5.x antérieures à 1.5.5

References

Title

Publication Time

opensuse-su-2023:0345-1

Vulnerability from csaf_opensuse

Published

2023-11-02 11:05

Modified

2023-11-02 11:05

Summary

Security update for roundcubemail

Notes

Title of the patch

Security update for roundcubemail

Description of the patch

This update for roundcubemail fixes the following issues: Update to version 1.6.4 (boo#1216429): * CVE-2023-5631: Fix cross-site scripting vulnerability in handling of SVG in HTML messages * Fix PHP8 warnings * Fix default 'mime.types' path on Windows * Managesieve: Fix javascript error when relational or spamtest extension is not enabled

Patchnames

openSUSE-2023-345

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for roundcubemail",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for roundcubemail fixes the following issues:\n\nUpdate to version 1.6.4 (boo#1216429):\n\n* CVE-2023-5631: Fix cross-site scripting vulnerability in handling of SVG in HTML messages \n* Fix PHP8 warnings\n* Fix default \u0027mime.types\u0027 path on Windows\n* Managesieve: Fix javascript error when relational or spamtest extension is not enabled\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2023-345",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2023_0345-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2023:0345-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GGRBYUWS4WS3V7Z75JPLZ6VMUDQER3SA/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2023:0345-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GGRBYUWS4WS3V7Z75JPLZ6VMUDQER3SA/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1216429",
        "url": "https://bugzilla.suse.com/1216429"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-5631 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-5631/"
      }
    ],
    "title": "Security update for roundcubemail",
    "tracking": {
      "current_release_date": "2023-11-02T11:05:52Z",
      "generator": {
        "date": "2023-11-02T11:05:52Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2023:0345-1",
      "initial_release_date": "2023-11-02T11:05:52Z",
      "revision_history": [
        {
          "date": "2023-11-02T11:05:52Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "roundcubemail-1.6.4-bp155.2.6.1.noarch",
                "product": {
                  "name": "roundcubemail-1.6.4-bp155.2.6.1.noarch",
                  "product_id": "roundcubemail-1.6.4-bp155.2.6.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Package Hub 15 SP5",
                "product": {
                  "name": "SUSE Package Hub 15 SP5",
                  "product_id": "SUSE Package Hub 15 SP5"
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.5",
                "product": {
                  "name": "openSUSE Leap 15.5",
                  "product_id": "openSUSE Leap 15.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-bp155.2.6.1.noarch as component of SUSE Package Hub 15 SP5",
          "product_id": "SUSE Package Hub 15 SP5:roundcubemail-1.6.4-bp155.2.6.1.noarch"
        },
        "product_reference": "roundcubemail-1.6.4-bp155.2.6.1.noarch",
        "relates_to_product_reference": "SUSE Package Hub 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-bp155.2.6.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:roundcubemail-1.6.4-bp155.2.6.1.noarch"
        },
        "product_reference": "roundcubemail-1.6.4-bp155.2.6.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5631",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-5631"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP5:roundcubemail-1.6.4-bp155.2.6.1.noarch",
          "openSUSE Leap 15.5:roundcubemail-1.6.4-bp155.2.6.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-5631",
          "url": "https://www.suse.com/security/cve/CVE-2023-5631"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1216405 for CVE-2023-5631",
          "url": "https://bugzilla.suse.com/1216405"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP5:roundcubemail-1.6.4-bp155.2.6.1.noarch",
            "openSUSE Leap 15.5:roundcubemail-1.6.4-bp155.2.6.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP5:roundcubemail-1.6.4-bp155.2.6.1.noarch",
            "openSUSE Leap 15.5:roundcubemail-1.6.4-bp155.2.6.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2023-11-02T11:05:52Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-5631"
    }
  ]
}

opensuse-su-2024:13365-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

roundcubemail-1.6.4-1.1 on GA media

Notes

Title of the patch

roundcubemail-1.6.4-1.1 on GA media

Description of the patch

These are all security issues fixed in the roundcubemail-1.6.4-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-13365

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "roundcubemail-1.6.4-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the roundcubemail-1.6.4-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13365",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13365-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-5631 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-5631/"
      }
    ],
    "title": "roundcubemail-1.6.4-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13365-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "roundcubemail-1.6.4-1.1.aarch64",
                "product": {
                  "name": "roundcubemail-1.6.4-1.1.aarch64",
                  "product_id": "roundcubemail-1.6.4-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "roundcubemail-1.6.4-1.1.ppc64le",
                "product": {
                  "name": "roundcubemail-1.6.4-1.1.ppc64le",
                  "product_id": "roundcubemail-1.6.4-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "roundcubemail-1.6.4-1.1.s390x",
                "product": {
                  "name": "roundcubemail-1.6.4-1.1.s390x",
                  "product_id": "roundcubemail-1.6.4-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "roundcubemail-1.6.4-1.1.x86_64",
                "product": {
                  "name": "roundcubemail-1.6.4-1.1.x86_64",
                  "product_id": "roundcubemail-1.6.4-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.aarch64"
        },
        "product_reference": "roundcubemail-1.6.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.ppc64le"
        },
        "product_reference": "roundcubemail-1.6.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.s390x"
        },
        "product_reference": "roundcubemail-1.6.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "roundcubemail-1.6.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.x86_64"
        },
        "product_reference": "roundcubemail-1.6.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-5631",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-5631"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.aarch64",
          "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.ppc64le",
          "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.s390x",
          "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-5631",
          "url": "https://www.suse.com/security/cve/CVE-2023-5631"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1216405 for CVE-2023-5631",
          "url": "https://bugzilla.suse.com/1216405"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.aarch64",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.ppc64le",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.s390x",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.aarch64",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.ppc64le",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.s390x",
            "openSUSE Tumbleweed:roundcubemail-1.6.4-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-5631"
    }
  ]
}

fkie_cve-2023-5631

Vulnerability from fkie_nvd

Published

2023-10-18 15:15

Modified

2025-10-30 20:11

Severity ?

6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Summary

References

URL	Tags
security@eset.com	http://www.openwall.com/lists/oss-security/2023/11/01/1	Mailing List, Third Party Advisory
security@eset.com	http://www.openwall.com/lists/oss-security/2023/11/01/3	Mailing List, Third Party Advisory
security@eset.com	http://www.openwall.com/lists/oss-security/2023/11/17/2	Mailing List, Third Party Advisory
security@eset.com	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079	Mailing List, Patch
security@eset.com	https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d	Patch
security@eset.com	https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613	Patch
security@eset.com	https://github.com/roundcube/roundcubemail/issues/9168	Exploit, Issue Tracking
security@eset.com	https://github.com/roundcube/roundcubemail/releases/tag/1.4.15	Release Notes
security@eset.com	https://github.com/roundcube/roundcubemail/releases/tag/1.5.5	Release Notes
security@eset.com	https://github.com/roundcube/roundcubemail/releases/tag/1.6.4	Release Notes
security@eset.com	https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html	Mailing List, Third Party Advisory
security@eset.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/	Mailing List
security@eset.com	https://roundcube.net/news/2023/10/16/security-update-1.6.4-released	Release Notes
security@eset.com	https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15	Release Notes
security@eset.com	https://www.debian.org/security/2023/dsa-5531	Mailing List
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2023/11/01/1	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2023/11/01/3	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2023/11/17/2	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079	Mailing List, Patch
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d	Patch
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613	Patch
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/issues/9168	Exploit, Issue Tracking
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/releases/tag/1.4.15	Release Notes
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/releases/tag/1.5.5	Release Notes
af854a3a-2127-422b-91ae-364da2661108	https://github.com/roundcube/roundcubemail/releases/tag/1.6.4	Release Notes
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/	Mailing List
af854a3a-2127-422b-91ae-364da2661108	https://roundcube.net/news/2023/10/16/security-update-1.6.4-released	Release Notes
af854a3a-2127-422b-91ae-364da2661108	https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15	Release Notes
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2023/dsa-5531	Mailing List
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631	US Government Resource

Impacted products

Vendor	Product	Version
roundcube	webmail	*
roundcube	webmail	*
roundcube	webmail	*
debian	debian_linux	10.0
debian	debian_linux	11.0
debian	debian_linux	12.0
fedoraproject	fedora	39

JSON

To clipboard

{
  "cisaActionDue": "2023-11-16",
  "cisaExploitAdd": "2023-10-26",
  "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A35A7DC-58C4-43F7-A66C-229B0A409224",
              "versionEndExcluding": "1.4.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF32BDE4-0C58-4D19-9E7C-CC0C0B22DF51",
              "versionEndExcluding": "1.5.5",
              "versionStartIncluding": "1.5.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BBAB5ECE-B692-46C2-A3EF-6BC52E4F3C3B",
              "versionEndExcluding": "1.6.4",
              "versionStartIncluding": "1.6.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code."
    },
    {
      "lang": "es",
      "value": "Roundcube anterior a 1.4.15, 1.5.x anterior a 1.5.5 y 1.6.x anterior a 1.6.4 permiten almacenar XSS a trav\u00e9s de un mensaje de correo electr\u00f3nico HTML con un documento SVG manipulado debido al comportamiento de program/lib/Roundcube/rcube_washtml.php. Esto podr\u00eda permitir que un atacante remoto cargue c\u00f3digo JavaScript arbitrario."
    }
  ],
  "id": "CVE-2023-5631",
  "lastModified": "2025-10-30T20:11:10.923",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "security@eset.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-10-18T15:15:08.727",
  "references": [
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List",
        "Patch"
      ],
      "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Exploit",
        "Issue Tracking"
      ],
      "url": "https://github.com/roundcube/roundcubemail/issues/9168"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Release Notes"
      ],
      "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
    },
    {
      "source": "security@eset.com",
      "tags": [
        "Mailing List"
      ],
      "url": "https://www.debian.org/security/2023/dsa-5531"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Patch"
      ],
      "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Issue Tracking"
      ],
      "url": "https://github.com/roundcube/roundcubemail/issues/9168"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ],
      "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List"
      ],
      "url": "https://www.debian.org/security/2023/dsa-5531"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5631"
    }
  ],
  "sourceIdentifier": "security@eset.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "security@eset.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2023-5631

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2023-5631

Aliases

CVE-2023-5631

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-5631",
    "id": "GSD-2023-5631"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-5631"
      ],
      "details": "\nRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.\n\n\n\n\n\n\n\n",
      "id": "GSD-2023-5631",
      "modified": "2023-12-13T01:20:50.475765Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@eset.com",
        "ID": "CVE-2023-5631",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Roundcubemail",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "unaffected",
                            "versions": [
                              {
                                "lessThan": "1.6.3",
                                "status": "affected",
                                "version": "1.6.0",
                                "versionType": "semver"
                              },
                              {
                                "lessThan": "1.5.4",
                                "status": "affected",
                                "version": "1.5.0",
                                "versionType": "semver"
                              },
                              {
                                "lessThan": "1.5.14",
                                "status": "affected",
                                "version": "1.4.0",
                                "versionType": "semver"
                              },
                              {
                                "status": "unaffected",
                                "version": "1.6.4"
                              },
                              {
                                "status": "unaffected",
                                "version": "1.5.5"
                              },
                              {
                                "status": "unaffected",
                                "version": "1.5.15"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Roundcube"
            }
          ]
        }
      },
      "credits": [
        {
          "lang": "en",
          "value": "Matthieu Faou"
        },
        {
          "lang": "en",
          "value": "Denys Klymenko"
        },
        {
          "lang": "en",
          "value": " Aleksander Machniak "
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "\nRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.\n\n\n\n\n\n\n\n"
          }
        ]
      },
      "exploit": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nActively used in the wild.\n\n\u003cbr\u003e"
            }
          ],
          "value": "\nActively used in the wild.\n\n\n"
        }
      ],
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-79",
                "lang": "eng",
                "value": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
          },
          {
            "name": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
          },
          {
            "name": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
          },
          {
            "name": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
          },
          {
            "name": "https://github.com/roundcube/roundcubemail/issues/9168",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/issues/9168"
          },
          {
            "name": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released",
            "refsource": "MISC",
            "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
          },
          {
            "name": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d",
            "refsource": "MISC",
            "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
          },
          {
            "name": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15",
            "refsource": "MISC",
            "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
          },
          {
            "name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079",
            "refsource": "MISC",
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
          },
          {
            "name": "https://www.debian.org/security/2023/dsa-5531",
            "refsource": "MISC",
            "url": "https://www.debian.org/security/2023/dsa-5531"
          },
          {
            "name": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html",
            "refsource": "MISC",
            "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2023/11/01/1",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2023/11/01/3",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
          },
          {
            "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/",
            "refsource": "MISC",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2023/11/17/2",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
          }
        ]
      },
      "source": {
        "discovery": "EXTERNAL"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "cisaActionDue": "2023-11-16",
        "cisaExploitAdd": "2023-10-26",
        "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
        "cisaVulnerabilityName": "Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability",
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "4A35A7DC-58C4-43F7-A66C-229B0A409224",
                    "versionEndExcluding": "1.4.15",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "AF32BDE4-0C58-4D19-9E7C-CC0C0B22DF51",
                    "versionEndExcluding": "1.5.5",
                    "versionStartIncluding": "1.5.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "BBAB5ECE-B692-46C2-A3EF-6BC52E4F3C3B",
                    "versionEndExcluding": "1.6.4",
                    "versionStartIncluding": "1.6.0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*",
                    "matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "\nRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker\n\nto load arbitrary JavaScript code.\n\n\n\n\n\n\n\n"
          },
          {
            "lang": "es",
            "value": "Roundcube anterior a 1.4.15, 1.5.x anterior a 1.5.5 y 1.6.x anterior a 1.6.4 permiten almacenar XSS a trav\u00e9s de un mensaje de correo electr\u00f3nico HTML con un documento SVG manipulado debido al comportamiento de program/lib/Roundcube/rcube_washtml.php. Esto podr\u00eda permitir que un atacante remoto cargue c\u00f3digo JavaScript arbitrario."
          }
        ],
        "id": "CVE-2023-5631",
        "lastModified": "2023-12-22T18:55:30.400",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 2.3,
              "impactScore": 2.7,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 2.7,
              "source": "security@eset.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2023-10-18T15:15:08.727",
        "references": [
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/1"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/01/3"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/11/17/2"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List",
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054079"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Patch"
            ],
            "url": "https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Patch"
            ],
            "url": "https://github.com/roundcube/roundcubemail/commit/6ee6e7ae301e165e2b2cb703edf75552e5376613"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Exploit",
              "Issue Tracking",
              "Third Party Advisory"
            ],
            "url": "https://github.com/roundcube/roundcubemail/issues/9168"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.4.15"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.5.5"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://github.com/roundcube/roundcubemail/releases/tag/1.6.4"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00035.html"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Mailing List"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LK67Q46OIEGJCRQUBHKLH3IIJTBNGGX4/"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://roundcube.net/news/2023/10/16/security-update-1.6.4-released"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Release Notes"
            ],
            "url": "https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15"
          },
          {
            "source": "security@eset.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5531"
          }
        ],
        "sourceIdentifier": "security@eset.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-79"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-79"
              }
            ],
            "source": "security@eset.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2023-5631 (GCVE-0-2023-5631)

Vulnerability from cvelistv5

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Vulnerability from github

Vulnerability from csaf_certbund

Vulnerability from csaf_certbund

Vulnerability from certfr_avis

Solution

Vulnerability from csaf_opensuse

Vulnerability from csaf_opensuse

Vulnerability from fkie_nvd

Vulnerability from gsd

Tags

Sightings

Nomenclature