CVE-2023-6395

MEDIUM

Mock - Privilege Escalation

Title source: llm
STIX 2.1

Description

The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges. This weakness stems from the absence of proper sandboxing during the expansion and execution of Jinja2 templates, which may be included in certain configuration parameters. While the Mock documentation advises treating users added to the mock group as privileged, certain build systems invoking mock on behalf of users might inadvertently permit less privileged users to define configuration tags. These tags could then be passed as parameters to mock during execution, potentially leading to the utilization of Jinja2 templates for remote privilege escalation and the execution of arbitrary code as the root user on the build server.

References (8)

Core 8
Core References
Mailing List, Patch, Third Party Advisory
http://www.openwall.com/lists/oss-security/2024/01/16/1
Exploit, Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2024/01/16/3
Third Party Advisory vdb-entry x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2023-6395
Issue Tracking, Third Party Advisory issue-tracking x_refsource_redhat
https://bugzilla.redhat.com/show_bug.cgi?id=2252206

Scores

CVSS v3 6.7
EPSS 0.0067
EPSS Percentile 71.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-94 CWE-20
Status published
Products (7)
fedoraproject/extra_packages_for_enterprise_linux 7.0
fedoraproject/extra_packages_for_enterprise_linux 8.0
fedoraproject/extra_packages_for_enterprise_linux 9.0
fedoraproject/fedora 38
fedoraproject/fedora 39
pypi/templated_dictionary 0 - 1.4.1PyPI
rpm-software-management/mock
Published Jan 16, 2024
Tracked Since Feb 18, 2026