Vulnerability Details CVE-2023-47268
In libslic3r/GCode/PostProcessor.cpp in Prusa PrusaSlicer through 2.6.1, a crafted 3mf project file can execute arbitrary code on a host where the project is sliced and G-code exported.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.0%
CVSS Severity
CVSS v3 Score 5.3
References
- https://help.prusa3d.com/article/post-processing-scripts_283913
- https://raw.githubusercontent.com/vulncheck-oss/0day.today.archive/main/local-exploits/39547.txt
- https://slic3r.org/download/
- https://www.prusa3d.com/page/prusaslicer_424/
- https://raw.githubusercontent.com/vulncheck-oss/0day.today.archive/main/local-exploits/39547.txt
Products affected by CVE-2023-47268
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.0
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.1
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.2
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.3
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.4
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.5
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.6
-
cpe:2.3:a:prusa3d:prusaslicer:0.5.7
-
cpe:2.3:a:prusa3d:prusaslicer:0.6.0
-
cpe:2.3:a:prusa3d:prusaslicer:0.7.0
-
cpe:2.3:a:prusa3d:prusaslicer:0.7.1
-
cpe:2.3:a:prusa3d:prusaslicer:0.7.2
-
cpe:2.3:a:prusa3d:prusaslicer:0.8.0
-
cpe:2.3:a:prusa3d:prusaslicer:0.8.1
-
cpe:2.3:a:prusa3d:prusaslicer:0.8.2
-
cpe:2.3:a:prusa3d:prusaslicer:0.8.3
-
cpe:2.3:a:prusa3d:prusaslicer:0.8.4
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.0
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.1
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.10
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.2
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.3
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.4
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.5
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.7
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.8
-
cpe:2.3:a:prusa3d:prusaslicer:0.9.9
-
cpe:2.3:a:prusa3d:prusaslicer:1.0.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.0.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.6
-
cpe:2.3:a:prusa3d:prusaslicer:1.1.7
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.31
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.6
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.7
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.8
-
cpe:2.3:a:prusa3d:prusaslicer:1.2.9
-
cpe:2.3:a:prusa3d:prusaslicer:1.3.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.30.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.31.6
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.6
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.7
-
cpe:2.3:a:prusa3d:prusaslicer:1.33.8
-
cpe:2.3:a:prusa3d:prusaslicer:1.34.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.34.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.34.1.24
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.35.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.36.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.36.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.36.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.37.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.37.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.37.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.4
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.5
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.6
-
cpe:2.3:a:prusa3d:prusaslicer:1.38.7
-
cpe:2.3:a:prusa3d:prusaslicer:1.39.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.39.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.39.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.40.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.40.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.0-3
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.1
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.1-1
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.1-5
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.2
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.2-1
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.2-2
-
cpe:2.3:a:prusa3d:prusaslicer:1.41.3
-
cpe:2.3:a:prusa3d:prusaslicer:1.42.0
-
cpe:2.3:a:prusa3d:prusaslicer:1.44.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.0.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.1.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.1.1
-
cpe:2.3:a:prusa3d:prusaslicer:2.2.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.2.3
-
cpe:2.3:a:prusa3d:prusaslicer:2.3.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.3.1
-
cpe:2.3:a:prusa3d:prusaslicer:2.3.2
-
cpe:2.3:a:prusa3d:prusaslicer:2.3.3
-
cpe:2.3:a:prusa3d:prusaslicer:2.4.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.4.1
-
cpe:2.3:a:prusa3d:prusaslicer:2.4.2
-
cpe:2.3:a:prusa3d:prusaslicer:2.5.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.5.1
-
cpe:2.3:a:prusa3d:prusaslicer:2.5.2
-
cpe:2.3:a:prusa3d:prusaslicer:2.6.0
-
cpe:2.3:a:prusa3d:prusaslicer:2.6.1