Vulnerability Details CVE-2023-42658
Archive command in Chef InSpec prior to 4.56.58 and 5.22.29 allow local command execution via maliciously crafted profile.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.3%
CVSS Severity
CVSS v3 Score 8.8
References
- https://community.progress.com/s/article/Product-Alert-Bulletin-October-2023-CHEF-Inspec-CVE-2023-42658
- https://docs.chef.io/inspec/cli/
- https://docs.chef.io/release_notes_inspec/
- https://community.progress.com/s/article/Product-Alert-Bulletin-October-2023-CHEF-Inspec-CVE-2023-42658
- https://docs.chef.io/inspec/cli/
- https://docs.chef.io/release_notes_inspec/