Vulnerability Database
Blog
FAQ
Docs
CVE-2023-3086
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3086
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3086.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-3086
Aliases
GHSA-j245-v2mh-5h6f
Published
2023-06-03T12:15:09Z
Modified
2024-10-12T10:53:58.332828Z
Severity
9.0 (Critical)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
CVSS Calculator
Summary
[none]
Details
Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9.
References
https://huntr.dev/bounties/17be9e8a-abe8-41db-987f-1d5b0686ae20
https://github.com/nilsteampassnet/teampass/commit/1c0825b67eb8f8b5ecc418ff7614423a275e6a79
Affected packages
Git
/
github.com/nilsteampassnet/teampass
Affected ranges
Type
GIT
Repo
https://github.com/nilsteampassnet/teampass
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
1c0825b67eb8f8b5ecc418ff7614423a275e6a79
Affected versions
2.*
2.1
2.1.20
2.1.23.1
2.1.23.2
2.1.23.3
2.1.23.4
2.1.24.0
2.1.24.1
2.1.24.2
2.1.24.3
2.1.24.4
2.1.25.0
2.1.25.1
2.1.25.2
2.1.26
2.1.26-RC1
2.1.26-final
2.1.26-final-2
2.1.26-final-3
2.1.26.0
2.1.26.1
2.1.26.10
2.1.26.11
2.1.26.12
2.1.26.13
2.1.26.14
2.1.26.15
2.1.26.16
2.1.26.17
2.1.26.18
2.1.26.19
2.1.26.2
2.1.26.20
2.1.26.3
2.1.26.4
2.1.26.5
2.1.26.6
2.1.26.7
2.1.26.8
2.1.26.9
2.1.26_RC1
2.1.27.0
2.1.27.1
2.1.27.10
2.1.27.11
2.1.27.12
2.1.27.13
2.1.27.14
2.1.27.15
2.1.27.16
2.1.27.17
2.1.27.18
2.1.27.19
2.1.27.2
2.1.27.20
2.1.27.21
2.1.27.22
2.1.27.23
2.1.27.24
2.1.27.25
2.1.27.26
2.1.27.27
2.1.27.28
2.1.27.29
2.1.27.3
2.1.27.30
2.1.27.31
2.1.27.32
2.1.27.33
2.1.27.34
2.1.27.35
2.1.27.36
2.1.27.4
2.1.27.5
2.1.27.6
2.1.27.7
2.1.27.8
2.1.27.9
3.*
3.0.0.0
3.0.0.10
3.0.0.11
3.0.0.12
3.0.0.13
3.0.0.14
3.0.0.15
3.0.0.16
3.0.0.17
3.0.0.18
3.0.0.19
3.0.0.2
3.0.0.20
3.0.0.21
3.0.0.22
3.0.0.23
3.0.0.3
3.0.0.5
3.0.0.6
3.0.0.7
3.0.0.8
3.0.0.9
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.0.7
3.0.8
CVE-2023-3086 - OSV