CVE-2023-28115

Risk Scores

Affected Products

Timeline

• Mar 17, 2023 CVE Published
• Mar 18, 2023 EPSS Score
• Mar 18, 2023 PoC Published
• Mar 23, 2023 PoC Published
• Jun 3, 2023 EPSS Score
• Jul 12, 2023 EPSS Score
• Sep 6, 2023 PoC Published
• Sep 27, 2023 EPSS Score
• Nov 4, 2023 EPSS Score
• Jan 20, 2024 EPSS Score
• Feb 28, 2024 EPSS Score
• Apr 6, 2024 EPSS Score

References

• https://github.com/KnpLabs/snappy/security/advisories/GHSA-gq6w-q6wh-jggc url
• https://github.com/KnpLabs/snappy/pull/469 url
• https://github.com/KnpLabs/snappy/commit/1ee6360cbdbea5d09705909a150df7963a88efd6 url
• https://github.com/KnpLabs/snappy/commit/b66f79334421c26d9c244427963fa2d92980b5d3 url
• https://github.com/KnpLabs/snappy/blob/5126fb5b335ec929a226314d40cd8dad497c3d67/src/Knp/Snappy/AbstractGenerator.php#L670 url
• https://github.com/KnpLabs/snappy/releases/tag/v1.4.2 url
• https://nvd.nist.gov/vuln/detail/CVE-2023-28115 advisory
• https://github.com/FriendsOfPHP/security-advisories/blob/master/knplabs/knp-snappy/CVE-2023-28115.yaml url
• https://github.com/KnpLabs/snappy package
• https://github.com/advisories/GHSA-gq6w-q6wh-jggc advisory
• https://huntr.dev/bounties/0bdddc12-ff67-4815-ab9f-6011a974f48e url