Lucene search
PhotonPHSA-2023-3.0-0578HistoryMay 12, 2023 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2023-3.0-0578
2023-05-1200:00:00
github.com
17
photon os
security update
cloud-init
runc
open-iscsi
gnuplot
mysql
etcd
unix
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.4%
Updates of [‘open-iscsi’, ‘mysql’, ‘etcd’, ‘cloud-init’, ‘runc’, ‘gnuplot’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 3.0 | noarch | cloud-init | < 22.4.2-5.ph3 | cloud-init-22.4.2-5.ph3.noarch.rpm |
| Photon | 3.0 | x86_64 | gnuplot | < 5.4.6-1.ph3 | gnuplot-5.4.6-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | open-iscsi-devel | < 2.1.1-3.ph3 | open-iscsi-devel-2.1.1-3.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | mysql | < 8.0.33-1.ph3 | mysql-8.0.33-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | open-iscsi | < 2.1.1-3.ph3 | open-iscsi-2.1.1-3.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | runc | < 1.1.4-4.ph3 | runc-1.1.4-4.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | mysql-devel | < 8.0.33-1.ph3 | mysql-devel-8.0.33-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | runc-doc | < 1.1.4-4.ph3 | runc-doc-1.1.4-4.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | mysql-icu-data-files | < 8.0.33-1.ph3 | mysql-icu-data-files-8.0.33-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | etcd | < 3.5.1-10.ph3 | etcd-3.5.1-10.ph3.x86_64.rpm |
Related
nessus
nessus
RHEL 8 : gnuplot (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : gnuplot (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 5 : gnuplot (Unpatched Vulnerability)
2024-05-11 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-4.0-0022
2021-05-11 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0005
2023-05-11 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0391
2023-05-12 00:00:00
cve
cve
nvd
nvd
openvas
openvas
Huawei EulerOS: Security Advisory for gnuplot (EulerOS-SA-2022-1322)
2022-03-21 00:00:00
Huawei EulerOS: Security Advisory for gnuplot (EulerOS-SA-2022-1725)
2022-05-25 00:00:00
openSUSE: Security Advisory for gnuplot (openSUSE-SU-2021:0345-1)
2021-04-16 00:00:00
prion
prion
redhatcve
redhatcve
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2021-12-31 23:57:18
Integer Overflow
2020-12-24 21:46:55
Privilege Escalation
2023-04-17 12:06:26
cvelist
cvelist
debiancve
debiancve
osv
osv
CVE-2021-44917
2021-12-21 20:15:07
BIT-etcd-2021-28235
2024-03-06 10:52:10
CVE-2023-21980
2023-04-18 20:15:17
cnvd
cnvd
Gnuplot code issue vulnerability
2021-12-23 00:00:00
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65514)
2023-04-21 00:00:00
suse
suse
Security update for gnuplot (moderate)
2021-02-26 00:00:00
mageia
mageia
Updated gnuplot packages fix a security vulnerability
2021-03-12 04:25:47
gitlab
gitlab
Improper Authentication
2023-04-04 00:00:00
redos
redos
ROS-20240411-02
2024-04-11 00:00:00
github
github
Etcd-io Improper Authentication vulnerability
2023-04-04 15:30:27
runc AppArmor bypass with symlinked /proc
2023-03-30 20:20:23
Opencontainers runc Incorrect Authorization vulnerability
2023-03-03 21:30:19
ubuntu
ubuntu
etcd vulnerability
2023-06-28 00:00:00
Cloud-init vulnerability
2023-04-26 00:00:00
MySQL vulnerabilities
2023-05-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package etcd version 3.5.8-alt1
2023-04-17 00:00:00
ibm
ibm
ics
ics
Siemens Embedded TCP/IP Stack Vulnerabilities–AMNESIA:33 (Update C)
2021-04-13 12:00:00
cbl_mariner
cbl_mariner
CVE-2021-28235 affecting package etcd for versions less than 3.5.4-6
2023-02-14 20:38:30
CVE-2023-21980 affecting package mysql for versions less than 8.0.33-1
2023-05-03 16:24:32
CVE-2023-27561 affecting package moby-runc for versions less than 1.1.5-1
2023-05-03 16:08:49
cgr
cgr
CVE-2023-27561 vulnerabilities
2024-05-19 03:07:16
redhat
redhat
almalinux
almalinux
Moderate: cloud-init security, bug fix, and enhancement update
2023-11-07 00:00:00
Moderate: cloud-init security, bug fix, and enhancement update
2023-11-14 00:00:00
wolfi
wolfi
CVE-2023-27561 vulnerabilities
2024-07-05 09:08:40
fedora
fedora
[SECURITY] Fedora 38 Update: cloud-init-23.1.2-1.fc38
2023-05-07 01:21:51
[SECURITY] Fedora 36 Update: runc-1.1.6-1.fc36
2023-04-21 01:25:12
[SECURITY] Fedora 38 Update: golang-github-opencontainers-runc-1.1.8-2.fc38
2023-08-16 01:22:21
freebsd
freebsd
cloud-init -- sensitive data exposure in cloud-init logs
2023-04-26 00:00:00
oraclelinux
oraclelinux
cloud-init security update
2023-04-27 00:00:00
cloud-init security, bug fix, and enhancement update
2023-11-11 00:00:00
cloud-init security update
2023-04-27 00:00:00
alpinelinux
alpinelinux
CVE-2023-1786
2023-04-26 23:15:08
CVE-2023-27561
2023-03-03 19:15:11
vulnrichment
vulnrichment
CVE-2023-27561
2023-03-03 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.4%
Related for PHSA-2023-3.0-0578