CVE-2023-39519
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-39519
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-39519.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-39519
- Aliases
-
- GHSA-hh2g-77xq-x4vq
- Published
- 2023-08-24T22:42:25Z
- Modified
- 2025-11-04T20:14:17.566230Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- CloudExplorer Lite sensitive information leakage vulnerability
- Details
-
Cloud Explorer Lite is an open source cloud management platform. Prior to version 1.4.0, there is a risk of sensitive information leakage in the user information acquisition of CloudExplorer Lite. The vulnerability has been fixed in version 1.4.0.
- Database specific
{ "cwe_ids": [ "CWE-200" ] }- References
Affected packages
Git / github.com/cloudexplorer-dev/cloudexplorer-lite
Affected versions
v0.*
v0.1
v0.2.0
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.4.0
v0.4.1
v0.4.2
v0.4.3
v1.*
v1.0.0
v1.0.1
v1.1.0
v1.2.0
v1.3.0
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"194128508947912608315810596113514164057",
"234758248441604277717523564175114165584",
"267394872442180600558452541600492353714",
"55582544302508423725667533346698834750",
"107009212036590696755229408091755731666",
"239463013927494121045422291474025587482",
"268922854720179989058886514084179459848",
"29977087302210296780115044007932144533",
"323419179710943802060889775048705603293",
"282983766201674921737594175137607901238"
]
},
"target": {
"file": "services/finance-management/backend/src/main/java/com/fit2cloud/event/EventListener.java"
},
"source": "https://github.com/cloudexplorer-dev/cloudexplorer-lite/commit/f852948d093f819cc9cb93cc41a6579cbcb8b721",
"id": "CVE-2023-39519-bc4ef447",
"deprecated": false,
"signature_version": "v1"
}
]