Vulnerability & Exploit Database

Red Hat OpenShift: CVE-2023-24538: golang: html/template: backticks not treated as string delimiters

Amazon Linux AMI: CVE-2023-24538: Security patch for amazon-ssm-agent ((Multiple Advisories))

Amazon Linux AMI 2: CVE-2023-24538: Security patch for amazon-ssm-agent, containerd, docker, golang (Multiple Advisories)

SUSE: CVE-2023-24538: SUSE Linux Security Advisory

CentOS Linux: CVE-2023-24538: Important: go-toolset and golang security update (Multiple Advisories)

Huawei EulerOS: CVE-2023-24538: golang security update

Ubuntu: (Multiple Advisories) (CVE-2023-24538): Go vulnerabilities

Oracle Linux: CVE-2023-24538: ELSA-2023-6938: container-tools:4.0 security and bug fix update (MODERATE) (Multiple Advisories)

IBM WebSphere Application Server: CVE-2023-26283: IBM WebSphere Application Server is vulnerable to cross-site scripting in the Admin Console (CVE-2023-26283)

Foxit Reader: Use After Free (CVE-2022-37378)

Foxit Reader: Out-of-bounds Read (CVE-2022-37376)

Foxit Reader: Out-of-bounds Read (CVE-2022-37386)

Foxit Reader: Access of Resource Using Incompatible Type ('Type Confusion') (CVE-2022-37377)

Foxit Reader: Out-of-bounds Read (CVE-2022-37383)

Foxit Reader: Out-of-bounds Read (CVE-2022-37380)

SUSE: CVE-2023-28427: SUSE Linux Security Advisory

Alpine Linux: CVE-2023-28427: Prototype Pollution

Debian: CVE-2023-28447: smarty4 -- security update

MFSA2023-12 Thunderbird: Security Vulnerabilities fixed in Thunderbird 102.9.1 (CVE-2023-28427)

FreeBSD: VID-5B0AE405-CDC7-11ED-BB39-901B0E9408DC (CVE-2023-28103): Matrix clients -- Prototype pollution in matrix-js-sdk