NVD - CVE-2023-41034

Vulnerability Change Records for CVE-2023-41034

Change History

Initial Analysis by NIST 9/06/2023 3:02:03 PM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:eclipse:leshan::::::::* versions up to (excluding) 1.5.0 cpe:2.3:a:eclipse:leshan:2.0.0:milestone1::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone10::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone11::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone12::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone2::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone3::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone4::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone5::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone6::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone7::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone8::::::* cpe:2.3:a:eclipse:leshan:2.0.0:milestone9::::::*
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Changed	Reference Type	https://github.com/eclipse-leshan/leshan/commit/29577d2879ba8e7674c3b216a7f01193fc7ae013 No Types Assigned	https://github.com/eclipse-leshan/leshan/commit/29577d2879ba8e7674c3b216a7f01193fc7ae013 Patch
Changed	Reference Type	https://github.com/eclipse-leshan/leshan/commit/4d3e63ac271a817f81fba3e3229c519af7a3049c No Types Assigned	https://github.com/eclipse-leshan/leshan/commit/4d3e63ac271a817f81fba3e3229c519af7a3049c Patch
Changed	Reference Type	https://github.com/eclipse-leshan/leshan/security/advisories/GHSA-wc9j-gc65-3cm7 No Types Assigned	https://github.com/eclipse-leshan/leshan/security/advisories/GHSA-wc9j-gc65-3cm7 Mitigation, Third Party Advisory
Changed	Reference Type	https://github.com/eclipse-leshan/leshan/wiki/Adding-new-objects#the-lwm2m-model No Types Assigned	https://github.com/eclipse-leshan/leshan/wiki/Adding-new-objects#the-lwm2m-model Product
Changed	Reference Type	https://owasp.org/www-community/vulnerabilities/XML_External_Entity_(XXE)_Processing No Types Assigned	https://owasp.org/www-community/vulnerabilities/XML_External_Entity_(XXE)_Processing Not Applicable