CVE-2023-40612

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-40612

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-40612.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-40612

Published

2023-08-23T19:15:08.443Z

Modified

2025-11-15T06:49:51.524870Z

Severity

8.0 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2, the file editor which is accessible to any user with ROLEFILESYSTEMEDITOR privileges is vulnerable to XXE injection attacks. The solution is to upgrade to Meridian 2023.1.5 or Horizon 32.0.2 or newer. Meridian and Horizon installation instructions state that they are intended for installation within an organization's private networks and should not be directly accessible from the Internet. OpenNMS thanks Erik Wynter for reporting this issue.

References

Affected packages

Git / github.com/opennms/opennms

Affected ranges

Type: GIT
Repo: https://github.com/opennms/opennms
Events: Introduced

29913a2510b6a0a2d0ceff75540ee848a432aacd

Fixed

5bbc4b368d0785d6d574713cb41c42c5a5f4421d

Affected versions

meridian-foundation-2020.*

meridian-foundation-2020.1.36-1

meridian-foundation-2020.1.37-1

meridian-foundation-2020.1.38-1

meridian-foundation-2021.*

meridian-foundation-2021.1.28-1

meridian-foundation-2021.1.29-1

meridian-foundation-2021.1.30-1

meridian-foundation-2022.*

meridian-foundation-2022.1.17-1

meridian-foundation-2022.1.18-1

meridian-foundation-2022.1.19-1

meridian-foundation-2023.*

meridian-foundation-2023.1.4-1

meridian-foundation-2023.1.5-1

meridian-foundation-2023.1.6-1

opennms-31.*

opennms-31.0.8-1

opennms-31.0.9-1

opennms-32.*

opennms-32.0.0-1

opennms-32.0.1-1

Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "target": {
            "file": "opennms-full-assembly/src/test/java/org/opennms/assemblies/karaf/OnmsKarafTestCase.java"
        },
        "id": "CVE-2023-40612-09622f97",
        "deprecated": false,
        "source": "https://github.com/opennms/opennms/commit/5bbc4b368d0785d6d574713cb41c42c5a5f4421d",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "238717685826699779264405235825138348771",
                "273357828459484690270803841110896658284",
                "242177411191332957867788921979162704325",
                "179513327363497079895471805040185634015"
            ]
        }
    },
    {
        "signature_version": "v1",
        "target": {
            "function": "getFrameworkUrl",
            "file": "opennms-full-assembly/src/test/java/org/opennms/assemblies/karaf/OnmsKarafTestCase.java"
        },
        "id": "CVE-2023-40612-0e1088fe",
        "deprecated": false,
        "source": "https://github.com/opennms/opennms/commit/5bbc4b368d0785d6d574713cb41c42c5a5f4421d",
        "signature_type": "Function",
        "digest": {
            "function_hash": "135521183293808262231671026994251354430",
            "length": 185.0
        }
    }
]