CVE-2023-1786

Опубликовано: 26 апр. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 5.5

Описание

Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

Релиз	Статус	Примечание
bionic	released	23.1.2-0ubuntu0~18.04.1
devel	not-affected	23.2-0ubuntu1
esm-infra/bionic	not-affected	23.1.2-0ubuntu0~18.04.1
esm-infra/focal	not-affected	23.1.2-0ubuntu0~20.04.1
esm-infra/xenial	released	21.1-19-gbad84ad4-0ubuntu1~16.04.4
focal	released	23.1.2-0ubuntu0~20.04.1
jammy	released	23.1.2-0ubuntu0~22.04.1
kinetic	released	23.1.2-0ubuntu0~22.10.1
lunar	released	23.1.2-0ubuntu0~23.04.1
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 8%

0.00032

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2023-1786

CVSS3: 5.5

redhat

около 2 лет назад

Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

CVE-2023-1786

CVSS3: 5.5

nvd

около 2 лет назад

Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

CVE-2023-1786

CVSS3: 5.5

msrc

около 2 лет назад

Описание отсутствует

CVE-2023-1786

CVSS3: 5.5

debian

около 2 лет назад

Sensitive data could be exposed in logs of cloud-init before version 2 ...

SUSE-SU-2024:0128-1

suse-cvrf

больше 1 года назад

Security update for cloud-init

EPSS

Процентиль: 8%

0.00032

Низкий

5.5 Medium

CVSS3

CVE-2023-1786

Описание

Пакет cloud-init

Ссылки на источники

Связанные уязвимости