Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cbl_marinerCBL MarinerCBLMARINER:31660
HistoryFeb 25, 2024 - 3:00 a.m.

CVE-2023-39325 affecting package skopeo for versions less than 1.12.0-4

2024-02-2503:00:06
CBL Mariner
2
cve-2023-39325
skopeo
unix
security vulnerability
package upgrade

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

8.3

Confidence

High

EPSS

0.003

Percentile

65.8%

JSON

CVE-2023-39325 affecting package skopeo for versions less than 1.12.0-4. An upgraded version of the package is available that resolves this issue.

OSVersionArchitecturePackageVersionFilename
CBL-Mariner2.0allskopeo< 1.12.0-4UNKNOWN

Related

cbl_mariner 16
osv 114
nessus 27
ibm 1
ubuntucve 1
redhat 4
fedora 14
amazon 3
openvas 15
veracode 1
cvelist 1
github 1
prion 1
cbl_mariner
cbl_mariner
CVE-2023-39325 affecting package git-lfs for versions less than 3.5.1-1
2024-04-30 01:31:53
CVE-2023-39325 affecting package coredns for versions less than 1.9.3-9
2024-02-02 20:37:47
CVE-2023-39325 affecting package packer for versions less than 1.8.7-2
2024-02-09 19:07:07
osv
osv
CGA-rj4x-73jq-whmg
2024-06-06 12:29:20
CGA-hwgj-mcjw-5gwq
2024-06-06 12:27:55
CGA-hq39-j5jw-fqwm
2024-06-06 12:27:43
nessus
nessus
Fedora 38 : golang-github-facebook-time (2024-f99ecead66)
2024-01-19 00:00:00
Amazon Linux 2023 : runc (ALAS2023-2023-396)
2023-10-24 00:00:00
Fedora 37 : golang-github-google-dap (2023-c858d2c53b)
2023-11-30 00:00:00
ibm
ibm
Security Bulletin: IBM Cloud Pak for Data Scheduling is vulnerable to denial of service due to golang compiler ( CVE-2023-39325 )
2024-03-20 17:43:57
ubuntucve
ubuntucve
CVE-2023-39325
2023-10-11 00:00:00
redhat
redhat
(RHSA-2023:5895) Important: OpenShift Container Platform 4.12.40 security and extras update
2023-10-25 00:56:35
(RHSA-2024:1037) Important: OpenShift Container Platform 4.13.36 bug fix and security update
2024-03-06 14:42:25
(RHSA-2023:6256) Important: OpenShift Container Platform 4.13.21 security and extras update
2023-11-08 08:37:57
fedora
fedora
[SECURITY] Fedora 39 Update: syncthing-1.26.0-1.fc39
2023-11-18 01:39:12
[SECURITY] Fedora 39 Update: prometheus-podman-exporter-1.5.0-1.fc39
2023-11-20 01:22:05
[SECURITY] Fedora 38 Update: pack-0.32.0-1.fc38
2023-11-17 01:20:17
amazon
amazon
Important: golist
2023-10-30 23:59:00
Important: cri-tools
2023-10-30 23:59:00
Low: containerd
2023-11-10 17:32:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2023-0d46257314)
2023-11-19 00:00:00
Fedora: Security Advisory for golang-github-tdewolff-minify (FEDORA-2024-0d4d9925a2)
2024-03-08 00:00:00
Fedora: Security Advisory for syncthing (FEDORA-2023-d58c8eeb7c)
2023-11-19 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-10-13 09:18:05
cvelist
cvelist
CVE-2023-39325 HTTP/2 rapid reset can cause excessive work in net/http
2023-10-11 21:15:02
github
github
HTTP/2 rapid reset can cause excessive work in net/http
2023-10-11 20:35:43
prion
prion
Design/Logic Flaw
2023-10-11 22:15:00

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

8.3

Confidence

High

EPSS

0.003

Percentile

65.8%

JSON
Related for CBLMARINER:31660
cbl_mariner16osv114nessus27ibm1ubuntucve1redhat4fedora14amazon3openvas15veracode1cvelist1github1prion1