CVE-2023-3431

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-3431

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3431.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-3431

Aliases

GHSA-p2mf-q26j-3xmh

Related

UBUNTU-CVE-2023-3431

Published

2023-06-27T15:15:11Z

Modified

2024-09-18T03:24:31.867315Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.

References

Affected packages

Debian:11 / plantuml

Package

Name: plantuml
Purl: pkg:deb/debian/plantuml?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.2020.2+ds-1

1:1.2020.2+ds-2

1:1.2020.2+ds-3

1:1.2020.2+ds-4

1:1.2020.2+ds-5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / plantuml

Package

Name: plantuml
Purl: pkg:deb/debian/plantuml?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.2020.2+ds-3

1:1.2020.2+ds-4

1:1.2020.2+ds-5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / plantuml

Package

Name: plantuml
Purl: pkg:deb/debian/plantuml?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.2020.2+ds-3

1:1.2020.2+ds-4

1:1.2020.2+ds-5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/plantuml/plantuml

Affected ranges

Type: GIT
Repo: https://github.com/plantuml/plantuml
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

fbe7fa3b25b4c887d83927cffb1009ec6cb8ab1e

Affected versions

v1.*

v1.2017.12

v1.2017.13

v1.2017.14

v1.2017.15

v1.2017.17

v1.2017.18

v1.2017.19

v1.2017.20

v1.2018.0

v1.2018.1

v1.2018.10

v1.2018.11

v1.2018.12

v1.2018.13

v1.2018.14

v1.2018.2

v1.2018.3

v1.2018.4

v1.2018.5

v1.2018.6

v1.2018.7

v1.2018.8

v1.2018.9

v1.2019.0

v1.2019.1

v1.2019.10

v1.2019.11

v1.2019.12

v1.2019.13

v1.2019.2

v1.2019.4

v1.2019.5

v1.2019.6

v1.2019.7

v1.2019.8

v1.2019.9

v1.2020.0

v1.2020.1

v1.2020.10

v1.2020.11

v1.2020.12

v1.2020.13

v1.2020.14

v1.2020.15

v1.2020.16

v1.2020.17

v1.2020.18

v1.2020.19

v1.2020.2

v1.2020.20

v1.2020.21

v1.2020.22

v1.2020.23

v1.2020.24

v1.2020.26

v1.2020.3

v1.2020.4

v1.2020.6

v1.2020.7

v1.2020.8

v1.2020.9

v1.2021.0

v1.2021.1

v1.2021.10

v1.2021.12

v1.2021.13

v1.2021.14

v1.2021.15

v1.2021.16

v1.2021.2

v1.2021.3

v1.2021.4

v1.2021.5

v1.2021.6

v1.2021.7

v1.2021.8

v1.2021.9

v1.2022.0

v1.2022.1

v1.2022.10

v1.2022.11

v1.2022.12

v1.2022.13

v1.2022.14

v1.2022.2

v1.2022.3

v1.2022.4

v1.2022.5

v1.2022.6

v1.2022.7

v1.2022.8

v1.2022.9

v1.2023.0

v1.2023.1

v1.2023.2

v1.2023.3

v1.2023.4

v1.2023.5

v1.2023.6

v1.2023.7

v1.2023.8

v2017.*

v2017.08

v2017.09

v2017.11

Other

v8059