CVE-2023-22897

SecurePoint UTM 12.x Memory Leak

Severity Score

6.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows information disclosure of memory contents to be achieved by an authenticated user. Essentially, uninitialized data can be retrieved via an approach in which a sessionid is obtained but not used.

SecurePoint UTM versions 12.x suffers from a memory leak vulnerability via the spcgi.cgi endpoint.

*Credits: N/A

CVSS Scores

NISTv3.1 6.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-01-10 CVE Reserved
2023-04-12 CVE Published
2024-08-02 CVE Updated
2024-08-02 First Exploit
2024-10-20 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-908: Use of Uninitialized Resource

CAPEC

References (4)

URL	Tag	Source
https://rcesecurity.com	Not Applicable

URL	Date	SRC
http://packetstormsecurity.com/files/171928/SecurePoint-UTM-12.x-Memory-Leak.html	2024-08-02
http://seclists.org/fulldisclosure/2023/Apr/8	2024-08-02
https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2023-22897.txt	2024-08-02

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Securepoint Search vendor "Securepoint"		Unified Threat Management Search vendor "Securepoint" for product "Unified Threat Management"				>= 12.2.3.1 < 12.2.5.1 Search vendor "Securepoint" for product "Unified Threat Management" and version " >= 12.2.3.1 < 12.2.5.1"		-		Affected