CVE-2023-38495

Risk Scores

Affected Products

Exploit Intelligence

• CIRCL seen: CVE-2023-38495 (circl-sighting)
• https://github.com/crossplane/crossplane/blob/ac8b24fe739c5d942ea885157148497f196c3dd3/security/ADA-security-audit-23.pdf (nist-nvd)
• https://github.com/crossplane/crossplane/security/advisories/GHSA-pj4x-2xr5-w87m (circl)

Timeline

• Jul 27, 2023 CVE Published
• Jul 27, 2023 PoC Published
• Jul 28, 2023 EPSS Score
• Aug 3, 2023 CVE Updated
• Aug 31, 2023 EPSS Score
• Oct 4, 2023 EPSS Score
• Nov 7, 2023 EPSS Score
• Dec 11, 2023 EPSS Score
• Jan 14, 2024 EPSS Score
• Feb 17, 2024 EPSS Score
• Mar 22, 2024 EPSS Score
• May 29, 2024 EPSS Score

References

• https://github.com/crossplane/crossplane/blob/ac8b24fe739c5d942ea885157148497f196c3dd3/security/ADA-security-audit-23.pdf url
• https://github.com/crossplane/crossplane/security/advisories/GHSA-pj4x-2xr5-w87m url
• https://nvd.nist.gov/vuln/detail/CVE-2023-38495 url