CVE-2023-23625

🗓️ 09 Feb 2023 21:11:15Reported by GitHub_MType

go-unixfs 0.4.3 Upgrade Required for CVE-2023-2362

Reporter	Title	Published	Views	Family All 9
OSV	CVE-2023-23625	9 Feb 202321:15	–	osv
OSV	Denial of service via HAMT decoding panic in github.com/ipfs/go-unixfs	14 Feb 202319:34	–	osv
OSV	Denial of service via HAMT Decoding Panics	10 Feb 202323:08	–	osv
Github Security Blog	Denial of service via HAMT Decoding Panics	10 Feb 202323:08	–	github
Veracode	Denial Of Service (DoS)	14 Feb 202302:05	–	veracode
NVD	CVE-2023-23625	9 Feb 202321:15	–	nvd
Prion	Design/Logic Flaw	9 Feb 202321:15	–	prion
Vulnrichment	CVE-2023-23625 Denial of service in HAMT Decoding in go-unixfs	9 Feb 202320:57	–	vulnrichment
Cvelist	CVE-2023-23625 Denial of service in HAMT Decoding in go-unixfs	9 Feb 202320:57	–	cvelist

Nvd

Vulners

Node

protocol go-unixfsRange<0.4.3go

[
  {
    "vendor": "ipfs",
    "product": "go-unixfs",
    "versions": [
      {
        "version": "< 0.4.3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/ipfs/go-unixfs/commit/467d139a640ecee4f2e74643dafcc58bb3b54175
github	www.github.com/ipfs/go-unixfs/security/advisories/GHSA-q264-w97q-q778

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Feb 2023 21:15Current

6.3Medium risk

Vulners AI Score6.3

CVSS35.9 - 7.5

EPSS0.00101

SSVC

CWE-400