CVE-2023-3431: PlantUML Improper Access Control vulnerability

June 27, 2023

Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.

References

github.com/advisories/GHSA-p2mf-q26j-3xmh
github.com/plantuml/plantuml/commit/fbe7fa3b25b4c887d83927cffb1009ec6cb8ab1e
huntr.dev/bounties/fa741f95-b53c-4ed7-b157-e32c5145164c
nvd.nist.gov/vuln/detail/CVE-2023-3431

Detect and mitigate CVE-2023-3431 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →