๐Ÿ” CVE Alert

CVE-2023-0914

MEDIUM 4.3

Improper Authorization in pixelfed/pixelfed

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

Improper Authorization in GitHub repository pixelfed/pixelfed prior to 0.11.4.

CWE CWE-285
Vendor pixelfed
Product pixelfed/pixelfed
Published Feb 19, 2023
Last Updated Aug 2, 2024
Stay Ahead of the Next One

Get instant alerts for pixelfed pixelfed/pixelfed

Be the first to know when new medium vulnerabilities affecting pixelfed pixelfed/pixelfed are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Versions

pixelfed / pixelfed/pixelfed
unspecified < 0.11.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/54d5fd76-e038-4eda-9e03-d5e95e09c0ec github.com: https://github.com/pixelfed/pixelfed/commit/ef56f92c3d77e9bafaa70c08b7c04d5a61b8d454