Login Sign Up

CVE-2023-6723

10.0 CRITICAL
Remote Code Execution

📋 TL;DR

CVE-2023-6723 is an unrestricted file upload vulnerability in Repbox that allows attackers to upload malicious files via the transforamationfileupload function due to insufficient file type validation. This can lead to remote code execution and full system compromise. All Repbox installations using vulnerable versions are affected.

💻 Affected Systems

Products:
  • Repbox
Versions: All versions prior to patched release
Operating Systems: All platforms running Repbox
Default Config Vulnerable: ⚠️ Yes
Notes: Any installation with the vulnerable transforamationfileupload function enabled is affected.

📦 What is this software?

Repox by Europeana

View all CVEs affecting Repox →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with complete control over the server, data theft, ransomware deployment, and lateral movement within the network.

🟠

Likely Case

Remote code execution leading to web shell installation, data exfiltration, and potential pivot to internal systems.

🟢

If Mitigated

File uploads blocked or sanitized, preventing malicious file execution while maintaining legitimate functionality.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Unrestricted file upload vulnerabilities are commonly exploited and weaponization is likely given the high CVSS score.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check vendor advisory for specific patched version

Vendor Advisory: https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-repox

Restart Required: Yes

Instructions:

1. Check the vendor advisory for patched version
2. Backup current configuration and data
3. Apply the official patch or upgrade to patched version
4. Restart the Repbox service
5. Verify the fix is working

🔧 Temporary Workarounds

Web Application Firewall Rule

all

Block file uploads to the vulnerable endpoint or restrict file types

WAF-specific configuration required

Disable Vulnerable Function

all

Temporarily disable the transforamationfileupload function if not required

Configuration file modification required

🧯 If You Can't Patch

  • Implement strict file upload validation at the web server level
  • Isolate the Repbox instance in a restricted network segment

🔍 How to Verify

Check if Vulnerable:

Check if transforamationfileupload endpoint accepts unrestricted file uploads without proper validation

Check Version:

Check Repbox version through web interface or configuration files

Verify Fix Applied:

Test that only allowed file types can be uploaded and malicious files are rejected

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads to transforamationfileupload endpoint
  • Uploads of executable files or scripts
  • Multiple failed upload attempts

Network Indicators:

  • POST requests to transforamationfileupload with unusual file extensions
  • Traffic patterns indicating file upload exploitation

SIEM Query:

source="repbox" AND (uri="*transforamationfileupload*" OR file_extension IN ("php", "jsp", "asp", "exe", "sh"))

📊 Metadata

CVE ID: CVE-2023-6723
CVSS v3 Score: 10.0 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CWE: CWE-434
Published: December 13, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-6723, you might also want to check these:

CVE-2024-52490 10.0

This vulnerability allows attackers to upload arbitrary files, including web shells, to Pathomation ...

Same vulnerability type (CWE-434)
CVE-2024-43160 10.0

CVE-2024-43160 is an unauthenticated arbitrary file upload vulnerability in the BerqWP WordPress plu...

Same vulnerability type (CWE-434)
CVE-2024-8940 10.0

CVE-2024-8940 is a critical unrestricted file upload vulnerability in Scriptcase version 9.4.019 tha...

Same vulnerability type (CWE-434)