CVE-2023-29400

SOURCE - nist

Summary

Templates containing actions in unquoted HTML attributes (e.g. "attr={{.}}") executed with empty input can result in output with unexpected results when parsed due to HTML normalization rules. This may allow injection of arbitrary attributes into tags.

EPSS Score⁠: 0.0009 (0.380)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-74⁠

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

SOURCE - redhat

CWE-176⁠

Improper Handling of Unicode Encoding

Sources (28)

Impacted images

nist

CREATED

1 year ago

UPDATED

1 year ago

SOURCE IDCVE-2023-29400⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-74⁠

CVSS SCORE

7.3high

alpine

CREATED

1 year ago

UPDATED

1 month ago

SOURCE IDCVE-2023-29400⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

debian

CREATED

1 year ago

UPDATED

2 months ago

SOURCE IDCVE-2023-29400⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

ubuntu

CREATED

1 year ago

UPDATED

26 days ago

SOURCE IDCVE-2023-29400⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.3medium

golang

CREATED

1 year ago

UPDATED

11 months ago

SOURCE IDGO-2023-1753⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6938⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6363⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6346⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6402⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

5 months ago

SOURCE IDALSA-2023:6939⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6474⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

alma

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDALSA-2023:6473⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

amazon

CREATED

11 months ago

UPDATED

11 months ago

SOURCE IDALAS-2023-1760⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

10 months ago

UPDATED

10 months ago

SOURCE IDALAS-2023-2163⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

7 months ago

UPDATED

4 months ago

SOURCE IDALAS-2023-1848⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

2 months ago

UPDATED

2 months ago

SOURCE IDALAS2023-2023-209⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

amazon

CREATED

2 months ago

UPDATED

2 months ago

SOURCE IDALAS2023-2023-269⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

bitnami

CREATED

8 months ago

UPDATED

8 months ago

SOURCE ID

BIT-2023-29400

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

bitnami

CREATED

2 months ago

UPDATED

2 months ago

SOURCE ID

BIT-golang-2023-29400

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

redhat

CREATED

1 year ago

UPDATED

6 months ago

SOURCE IDCVE-2023-29400⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-176⁠

CVSS SCORE

7.3medium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6473⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6939⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6363⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6938⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6474⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

oracle

CREATED

6 months ago

UPDATED

6 months ago

SOURCE IDELSA-2023-6402⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

chainguard

CREATED

1 year ago

UPDATED

2 months ago

SOURCE ID

CVE-2023-29400

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE

wolfi

CREATED

1 year ago

UPDATED

2 months ago

SOURCE ID

CVE-2023-29400

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM SOURCE