CVE-2023-3553: Exposure of Sensitive Information to an Unauthorized Actor

July 8, 2023 (updated July 14, 2023)

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository nilsteampassnet/teampass prior to 3.0.10.

References

github.com/nilsteampassnet/teampass/commit/e9f90b746fdde135da3c7fbe4fa22fe2bd32e66b
huntr.dev/bounties/857f002a-2794-4807-aa5d-2f340de01870
nvd.nist.gov/vuln/detail/CVE-2023-3553

Detect and mitigate CVE-2023-3553 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →