Cloud Explorer Lite is an open source cloud management platform. Prior to version 1.4.0, there is a risk of sensitive information leakage in the user information acquisition of CloudExplorer Lite. The vulnerability has been fixed in version 1.4.0.
References
Link | Resource |
---|---|
https://github.com/CloudExplorer-Dev/CloudExplorer-Lite/releases/tag/v1.4.0 | Release Notes |
https://github.com/CloudExplorer-Dev/CloudExplorer-Lite/security/advisories/GHSA-hh2g-77xq-x4vq | Exploit Third Party Advisory |
Configurations
History
29 Aug 2023, 16:06
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fit2cloud
Fit2cloud cloudexplorer Lite |
|
CPE | cpe:2.3:a:fit2cloud:cloudexplorer_lite:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.9 |
References | (MISC) https://github.com/CloudExplorer-Dev/CloudExplorer-Lite/releases/tag/v1.4.0 - Release Notes | |
References | (MISC) https://github.com/CloudExplorer-Dev/CloudExplorer-Lite/security/advisories/GHSA-hh2g-77xq-x4vq - Exploit, Third Party Advisory |
24 Aug 2023, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-24 23:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-39519
Mitre link : CVE-2023-39519
CVE.ORG link : CVE-2023-39519
JSON object : View
Products Affected
fit2cloud
- cloudexplorer_lite
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor