VDB
CVE-2023-29383
CVE-2023-29383
PUBLISHED
Shadow stellt auf Unix/Linux Systemen einen Mechanismus bereit, um Passwörter von Benutzer als Hash zu speichern.
EPSS 0.04% · 12.8th percentile
Risk Scores
EPSS Score
0.04%
12.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Dell ECS <3.8.1.0 | |
| Dell | Dell NetWorker Virtual Edition | |
| Dell | Dell NetWorker <vproxy 19.9.0.2 | |
| Dell | Dell PowerEdge | |
| Open Source | Open Source shadow 4.13 | |
| Debian | Debian Linux | |
| SUSE | SUSE Linux | |
| Dell | Dell Avamar | |
| Dell | Dell NetWorker <vproxy 19.8.0.3 |
Exploit Intelligence
- https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/cve-2023-29383-abusing-linux-chfn-to-misrepresent-etc-passwd/ (nist-nvd)
- https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=31797 (nist-nvd)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
…and 1 more exploits
Timeline
- Mar 31, 2023 Fix PR Merged
- Apr 14, 2023 CVE Published
- Apr 15, 2023 EPSS Score
- May 23, 2023 EPSS Score
- Jun 29, 2023 EPSS Score
- Aug 6, 2023 EPSS Score
- Sep 12, 2023 EPSS Score
- Oct 20, 2023 EPSS Score
- Nov 27, 2023 EPSS Score
- Jan 3, 2024 EPSS Score
- Feb 10, 2024 EPSS Score
- Mar 19, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0794.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0794 advisory
- https://www.dell.com/support/kbdoc/000223839/dsa-2024-= advisory
- https://www.dell.com/support/kbdoc/en-us/000209268/dsa-2023-014-dell-poweredge-server-security-update-for-intel-february-2023-security-advisories-2023-1-ipu advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014668.html advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0978.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0978 advisory
- https://github.com/advisories/GHSA-p9w4-8hh8-crcx advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014676.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014667.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014669.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014670.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014666.html advisory
- https://www.dell.com/support/kbdoc/de-de/000219148/dsa-2023-317-security-update-for-dell-networker-vproxy-multiple-linux-packages-vulnerabilities advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-March/018199.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-March/018223.html advisory
- https://lists.debian.org/debian-lts-announce/2025/04/msg00026.html advisory
- https://www.dell.com/support/kbdoc/de-de/000216397/dsa-2023-268-security-update-for-dell-avamar-dell-networker-virtual-edition-nve-and-dell-powerprotect-dp-series-appliance-dell-integrated-data-protection-appliance-idpa-security-update-for-multiple-vulnerabilities advisory