Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/01/27 12:0 a.m.18 views

CBL Mariner 2.0 Security Update: packer / terraform (CVE-2023-0475)

The version of packer / terraform installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-0475 advisory. - HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 an...

6.5CVSS6.2AI score0.00454EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/24 8:14 p.m.54 views

CVE-2023-0475 affecting package terraform for versions less than 1.3.2-22

CVE-2023-0475 affecting package terraform for versions less than 1.3.2-22. A patched version of the package is available...

6.5CVSS5.7AI score0.00454EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.187 views

CVE-2023-0475 affecting package k3s 1.24.12-2

CVE-2023-0475 affecting package k3s 1.24.12-2. This CVE either no longer is or was never applicable...

6.5CVSS9.8AI score0.00454EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/06/26 11:39 p.m.4 views

SUSE CVE-2023-0475

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

6.5CVSS5.5AI score0.00454EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2024/01/19 3:54 a.m.42 views

CVE-2023-0475 affecting package packer for versions less than 1.8.7-1

CVE-2023-0475 affecting package packer for versions less than 1.8.7-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.8AI score0.00454EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/02/17 12:29 p.m.26 views

CVE-2023-0475

A flaw was found in the HashiCorp go-getter package. Affected versions of the HashiCorp go-getter package are vulnerable to a denial of service via a malicious compressed archive...

4.2CVSS6.2AI score0.00454EPSS
Exploits0References4
OSV
OSV
added 2023/02/16 7:15 p.m.7 views

AZL-13586 CVE-2023-0475 affecting package packer for versions less than 1.8.7-1

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

6.5CVSS6.5AI score0.00454EPSS
Exploits0References1
NVD
NVD
added 2023/02/16 7:15 p.m.19 views

CVE-2023-0475

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

6.5CVSS5.4AI score0.00454EPSS
Exploits0References1
CVE
CVE
added 2023/02/16 6:35 p.m.335 views

CVE-2023-0475

CVE-2023-0475 affects HashiCorp go-getter versions up to 1.6.2 and 2.1.1. The flaw is a decompression-bomb vulnerability arising from improper handling of highly compressed data, allowing crafted archives to crash the library. Remediation: upgrade to 1.7.0 (or 2.2.0) where fixed. Connected docume...

6.5CVSS5.3AI score0.00454EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/16 6:35 p.m.6 views

CVE-2023-0475 Go-Getter Vulnerable to Decompression Bombs

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

4.2CVSS6.7AI score0.00454EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/16 6:35 p.m.31 views

CVE-2023-0475 Go-Getter Vulnerable to Decompression Bombs

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

4.2CVSS6.5AI score0.00454EPSS
Exploits0References1
OSV
OSV
added 2023/02/16 6:35 p.m.28 views

CVE-2023-0475 Go-Getter Vulnerable to Decompression Bombs

HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompression bombs. Fixed in 1.7.0 and 2.2.0...

4.2CVSS6.5AI score0.00454EPSS
Exploits0References4
Rows per page
Query Builder