CVE-2023-28434

🗓️ 22 Mar 2023 00:00:00Reported by AttackerKBType

Minio Object Storage framework pre-RELEASE.2023-03-20T20-16-18Z allows crafted requests to bypass bucket name checking

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 25
NVD	CVE-2023-28434	22 Mar 202321:15	–	nvd
Veracode	Privilege Escalation	28 Mar 202307:02	–	veracode
OSV	CGA-28M3-FGWH-2Q2W	6 Jun 202412:17	–	osv
OSV	CVE-2023-28434	22 Mar 202321:15	–	osv
OSV	GHSA-2PXW-R47W-4P8C Privilege Escalation on Linux/MacOS	5 Sep 202315:45	–	osv
OSV	BIT-MINIO-2023-28434 MinIO is vulnerable to privilege escalation on Linux/MacOS	6 Mar 202410:56	–	osv
OSV	UBUNTU-CVE-2023-28434	22 Mar 202321:15	–	osv
Chainguard	CVE-2023-28434 vulnerabilities	22 Mar 202321:15	–	cgr
CISA	CISA Adds One Known Exploited Vulnerability to Catalog	19 Sep 202312:00	–	cisa
Cvelist	CVE-2023-28434 MinIO is vulnerable to privilege escalation on Linux/MacOS	22 Mar 202320:44	–	cvelist

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
github	www.github.com/minio/minio/security/advisories/GHSA-2pxw-r47w-4p8c
github	www.github.com/minio/minio/pull/16849
github	www.github.com/minio/minio/commit/67f4ba154a27a1b06e48bfabda38355a010dfca5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Mar 2023 00:00Current

8.3High risk

Vulners AI Score8.3

CVSS38.8

EPSS0.33706