Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2023-5631

Disclosure Date: October 18, 2023 •

CVE-2023-5631 CVSS v3 Base Score: 5.4

Exploited in the Wild

Reported by inokii and 2 more...
View Source Details

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavior. This could allow a remote attacker

to load arbitrary JavaScript code.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

5.4 Medium

Impact Score:

2.7

Exploitability Score:

2.3

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

Required

Scope (S):

Changed

Confidentiality (C):

Low

Integrity (I):

Low

Availability (A):

None

Vendors

debian,
fedoraproject,
roundcube

Products

debian linux 10.0,
debian linux 11.0,
debian linux 12.0,
fedora 39,
webmail

Exploited in the Wild

Reported by:

inokii indicated sources as

Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)
Other: CISA Gov Alert (https://www.cisa.gov/news-events/alerts/2023/10/26/cisa-adds-one-known-exploited-vulnerability-catalog)

Reported: October 30, 2023 10:41pm UTC (6 months ago)

cbeek-r7 indicated source as News Article or Blog (https://www.rewterz.com/rewterz-news/rewterz-threat-alert-russia-linked-winter-vivern-apt-leverages-roundcube-vulnerabilities-to-target-over-80-organizations-active-iocs/)

Reported: March 18, 2024 9:55am UTC (1 month ago)

ccondon-r7 indicated source as News Article or Blog (https://www.welivesecurity.com/en/eset-research/winter-vivern-exploits-zero-day-vulnerability-roundcube-webmail-servers/)

Reported: March 19, 2024 5:04pm UTC (1 month ago)

References

Canonical

CVE-2023-5631 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5631)

Exploit

The following exploit POCs have not been verified by Rapid7 researchers, but are sourced from: nomi-sec/PoC-in-GitHub.
Additional sources will be added here as they become relevant.
Notes: We will only add the top 3 POCs for a given CVE. POCs added here must have at least 2 GitHub stars.

EXPLOIT-Roundcube-vulnerability-POC-CVE-2023-5631- (https://github.com/greandfather/EXPLOIT-Roundcube-vulnerability-POC-CVE-2023-5631-)