CVE-2023-0777
- Source
- https://cve.org/CVERecord?id=CVE-2023-0777
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-0777.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-0777
- Aliases
- Published
- 2023-02-10T00:00:00Z
- Modified
- 2025-12-04T22:59:18.995560Z
- Severity
-
- 8.6 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N CVSS Calculator
- Summary
- Authentication Bypass by Primary Weakness in modoboa/modoboa
- Details
-
Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
- Database specific
{ "cwe_ids": [ "CWE-305" ], "cna_assigner": "@huntrdev", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0777.json" }- References
-
- http://packetstormsecurity.com/files/171744/modoboa-2.0.4-Admin-Takeover.html
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0777.json
- https://github.com/modoboa/modoboa/commit/47d17ac6643f870719691073956a26e4be0a4806
- https://huntr.dev/bounties/a17e7a9f-0fee-4130-a522-5a0466fc17c7
- https://nvd.nist.gov/vuln/detail/CVE-2023-0777
Affected packages
Git / github.com/modoboa/modoboa
Affected ranges
- Type
- GIT
- Repo
- https://github.com/modoboa/modoboa
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
0.*
0.1
0.2
0.3
0.5
0.6
0.6.1
0.7
0.7.1
0.7.2
0.8
0.8-rc1
0.8-rc2
0.8.1
0.8.2
0.8.3
0.8.3-rc1
0.8.4
0.8.5
0.8.6
0.8.6.1
0.8.7
0.8.8
0.9
0.9.1
0.9.2
0.9.3
0.9.4
0.9.5
1.*
1.0.0
1.0.1
1.1.0
1.1.1
1.1.2
1.1.3
1.1.4
1.1.5
1.1.6
1.1.7
1.10.0
1.10.1
1.10.2
1.10.3
1.10.4
1.10.5
1.10.6
1.10.7
1.11.0
1.11.1
1.12.0
1.12.1
1.12.2
1.13.0
1.13.1
1.14.0
1.15.0
1.16.0
1.16.1
1.17.0
1.2.0
1.2.0-rc1
1.2.0-rc2
1.2.1
1.3.0
1.3.1
1.3.2
1.3.3
1.3.4
1.3.5
1.4.0
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.5.0
1.5.1
1.5.2
1.5.3
1.6.0
1.6.1
1.7.0
1.7.1
1.7.2
1.7.3
1.7.4
1.8.0
1.8.1
1.8.2
1.8.3
1.9.0
1.9.1
2.*
2.0.0
2.0.0-beta.1
2.0.0-beta.2
2.0.0-beta.3
2.0.1
2.0.2
2.0.3