CVE-2023-34623

Public on 2023-06-14

Modified on 2024-04-16

Description

An issue was discovered jtidy thru r938 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies.

Severity

Medium

CVSS v3 Base Score

5.3

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory	Status
HAQM Linux 1	jtidy			No Fix Planned
HAQM Linux 2 - Core	jtidy	2024-02-15	ALAS2-2024-2461	Fixed
HAQM Linux 2023	jtidy	2024-01-03	ALAS2023-2024-478	Fixed

CVSS Scores

	Score Type	Score	Vector
HAQM Linux	CVSSv3	5.3	AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
NVD	CVSSv3	7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Red Hat: CVE-2023-34623 Mitre: CVE-2023-34623