Lucene search

CVE-2023-28432

🗓️ 22 Mar 2023 21:18:15Reported by GitHub_MType

Minio cluster deployment < RELEASE.2023-03-20T20-16-18Z returns environment variables, causing information disclosure

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 37
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	7 Dec 202303:33	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	24 Mar 202308:27	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	24 Mar 202308:13	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	21 Aug 202306:03	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	27 May 202314:55	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	11 Jan 202413:41	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	29 Mar 202301:26	–	githubexploit
GithubExploit	Exploit for Vulnerability in Minio	31 Mar 202313:29	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	27 Mar 202307:14	–	githubexploit
GithubExploit	Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Minio	13 Apr 202413:52	–	githubexploit

Nvd

Vulners

Node

minio minioRange2019-12-17t23-16-33z–2023-03-20t20-16-18z

[
  {
    "vendor": "minio",
    "product": "minio",
    "versions": [
      {
        "version": ">= RELEASE.2019-12-17T23-16-33Z, < RELEASE.2023-03-20T20-16-18Z",
        "status": "affected"
      }
    ]
  }
]

Source	Link
greynoise	www.greynoise.io/blog/openai-minio-and-why-you-should-always-use-docker-cli-scan-to-keep-your-supply-chain-clean
github	www.github.com/minio/minio/releases/tag/RELEASE.2023-03-20T20-16-18Z
twitter	www.twitter.com/Andrew___Morris/status/1639325397241278464
viz	www.viz.greynoise.io/tag/minio-information-disclosure-attempt
github	www.github.com/minio/minio/security/advisories/GHSA-6xvq-wj2x-3h3q

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Mar 2023 21:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.5

EPSS0.93903