Vulnerability Report: GO-2023-1925
- CVE-2023-34236, GHSA-6hvv-j432-23cv
- Affects: github.com/weaveworks/tf-controller
- Published: Aug 20, 2024
- Unreviewed
Weave GitOps Terraform Controller Information Disclosure Vulnerability in github.com/weaveworks/tf-controller
For detailed information about this vulnerability, visit https://github.com/weaveworks/tf-controller/security/advisories/GHSA-6hvv-j432-23cv or https://nvd.nist.gov/vuln/detail/CVE-2023-34236.
Affected Modules
-
PathGo Versions
-
before v0.14.4, from v0.15.0-rc.1 before v0.15.0-rc.5
Aliases
References
- https://github.com/weaveworks/tf-controller/security/advisories/GHSA-6hvv-j432-23cv
- https://nvd.nist.gov/vuln/detail/CVE-2023-34236
- https://github.com/weaveworks/tf-controller/commit/28282bc644054e157c3b9a3d38f1f9551ce09074
- https://github.com/weaveworks/tf-controller/commit/6323b355bd7f5d2ce85d0244fe0883af3881df4e
- https://github.com/weaveworks/tf-controller/commit/9708fda28ccd0466cb0a8fd409854ab4d92f7dca
- https://github.com/weaveworks/tf-controller/commit/98a0688036e9dbcf43fa84960d9a1ef3e09a69cf
- https://github.com/weaveworks/tf-controller/issues/637
- https://github.com/weaveworks/tf-controller/issues/649
- https://vuln.go.dev/ID/GO-2023-1925.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.