CVE-2023-1160: Use of Platform-Dependent Third Party Components

March 3, 2023

Use of Platform-Dependent Third Party Components in GitHub repository cockpit-hq/cockpit prior to 2.4.0.

References

github.com/advisories/GHSA-p8cq-pv6w-6rwx
github.com/cockpit-hq/cockpit/commit/690016208850f2d788ebc3c67884d4c692587eb8
huntr.dev/bounties/3ce480dc-1b1c-4230-9287-0dc3b31c2f87
nvd.nist.gov/vuln/detail/CVE-2023-1160

Detect and mitigate CVE-2023-1160 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →