CVE-2023-43608
- Reference to the description:
- Description:
- A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of Buildroot 2023.08.1 and dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.
- Last updated date:
- 12/11/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 12/11/2023
- Reference url to background
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1845