logo

Database

Improper authorization control for web services In plantuml

Description

PlantUML Improper Access Control vulnerability Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2023-34312. NVD-2023-34313. OSV-DEBIAN-2023-34314. OSV-2023-34315. GCVE-2023-34316. SECURITY-TRACKER-CVE-2023-3431

References

1. https://github.com/plantuml/plantuml/commit/fbe7fa3b25b4c887d83927cffb1009ec6cb8ab1e2. https://huntr.dev/bounties/fa741f95-b53c-4ed7-b157-e32c5145164c3. https://lists.fedoraproject.org/archives/list/[email protected]/message/FV7XL3CY3K3K5ER3ASMEQA546MIQQ7QM

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.