2023 CVE Vulnerabilities
31,213 CVEs published in 2023.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2023-37904 | LOW | 3.1 | 0.2% | Jul 28, 2023 | Discourse is an open source discussion platform. Prior to version 3.0.6 of the `stable` branch and version 3.1.0.beta7 o... |
| CVE-2023-37900 | LOW | 2.7 | 0.5% | Jul 27, 2023 | Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1... |
| CVE-2023-33229 | LOW | 3.5 | 0.8% | Jul 26, 2023 | The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability. This vulnerability allows a... |
| CVE-2023-38496 | LOW | 3.3 | 0.2% | Jul 25, 2023 | Apptainer is an open source container platform. Version 1.2.0-rc.2 introduced an ineffective privilege drop when request... |
| CVE-2023-37361 | LOW | 2.7 | 0.5% | Jul 25, 2023 | REDCap 12.0.26 LTS and 12.3.2 Standard allows SQL Injection via scheduling, repeatforms, purpose, app_title, or randomiz... |
| CVE-2023-25840 | LOW | 3.4 | 0.4% | Jul 21, 2023 | There is a Cross-site Scripting vulnerability in ArcGIS Server in versions 11.1 and below that may allow a remote, authe... |
| CVE-2023-3803 | LOW | 3.7 | 0.5% | Jul 21, 2023 | A vulnerability classified as problematic has been found in Chengdu Flash Flood Disaster Monitoring and Warning System 2... |
| CVE-2023-3299 | LOW | 2.7 | 0.5% | Jul 20, 2023 | HashiCorp Nomad Enterprise 1.2.11 up to 1.5.6, and 1.4.10 ACL policies using a block without a label generates unexpecte... |
| CVE-2023-3072 | LOW | 3.8 | 0.4% | Jul 20, 2023 | HashiCorp Nomad and Nomad Enterprise 0.7.0 up to 1.5.6 and 1.4.10 ACL policies using a block without a label generates u... |
| CVE-2023-3674 | LOW | 2.8 | 0.2% | Jul 19, 2023 | A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when ... |
| CVE-2023-22052 | LOW | 3.1 | 0.3% | Jul 18, 2023 | Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.19 a... |
| CVE-2023-22051 | LOW | 3.7 | 0.4% | Jul 18, 2023 | Vulnerability in the Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Gra... |
| CVE-2023-22049 | LOW | 3.7 | 1.3% | Jul 18, 2023 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE... |
| CVE-2023-22048 | LOW | 3.1 | 0.8% | Jul 18, 2023 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that ... |
| CVE-2023-22045 | LOW | 3.7 | 1.2% | Jul 18, 2023 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE... |
| CVE-2023-22044 | LOW | 3.7 | 1.1% | Jul 18, 2023 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE... |
| CVE-2023-22038 | LOW | 2.7 | 0.8% | Jul 18, 2023 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions... |
| CVE-2023-22036 | LOW | 3.7 | 1.1% | Jul 18, 2023 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE... |
| CVE-2023-22010 | LOW | 2.2 | 0.3% | Jul 18, 2023 | Vulnerability in Oracle Essbase (component: Security and Provisioning). The supported version that is affected is 21.4... |
| CVE-2023-22006 | LOW | 3.1 | 0.9% | Jul 18, 2023 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE... |
| CVE-2023-21949 | LOW | 3.7 | 0.4% | Jul 18, 2023 | Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affect... |
| CVE-2023-3614 | LOW | 3.3 | 0.3% | Jul 17, 2023 | Mattermost fails to properly validate a gif image file, allowing an attacker to consume a significant amount of server r... |
| CVE-2023-3613 | LOW | 3.5 | 0.3% | Jul 17, 2023 | Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowi... |
| CVE-2023-3587 | LOW | 2.7 | 0.4% | Jul 17, 2023 | Mattermost fails to properly show information in the UI, allowing a system admin to modify a board state allowing any us... |
| CVE-2023-3584 | LOW | 3.1 | 0.3% | Jul 17, 2023 | Mattermost fails to properly check the authorization of POST /api/v4/teams when passing a team override scheme ID in the... |
Check if your code is affected by 2023 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now