CVE-2023-29492

Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in the context of the service account. This does not provide access to stored survey or response data.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx	Vendor Advisory
https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:3rdmill:novi_survey:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:57

Type	Values Removed	Values Added
References	~~() https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx - Vendor Advisory~~	() https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx - Vendor Advisory

26 Sep 2024, 14:10

Type	Values Removed	Values Added
CPE	cpe:2.3:a:novisurvey:novi_survey::::::::	cpe:2.3:a:3rdmill:novi_survey::::::::
First Time		3rdmill 3rdmill novi Survey

18 Apr 2023, 02:16

Type	Values Removed	Values Added
CPE		cpe:2.3:a:novisurvey:novi_survey::::::::
References	~~(CONFIRM) https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx -~~	(CONFIRM) https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx - Vendor Advisory
First Time		Novisurvey Novisurvey novi Survey
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
CWE		CWE-94

11 Apr 2023, 05:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-04-11 05:15

Updated : 2024-11-21 07:57

NVD link : CVE-2023-29492

Mitre link : CVE-2023-29492

CVE.ORG link : CVE-2023-29492

JSON object : View

Products Affected

3rdmill

novi_survey

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2023-29492", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-04-11T05:15:07.393", "references": [{"url": "https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in the context of the service account. This does not provide access to stored survey or response data."}], "lastModified": "2024-11-21T07:57:10.087", "cisaActionDue": "2023-05-04", "cisaExploitAdd": "2023-04-13", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:3rdmill:novi_survey:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1D0E9E5-7AEA-4606-95EF-1A5909DCCFD2", "versionEndExcluding": "8.9.43676"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Novi Survey Insecure Deserialization Vulnerability"}