CVE-2023-49079
CVSS V2 None
CVSS V3 None
Description
Misskey is an open source, decentralized social media platform. Misskey's missing signature validation allows arbitrary users to impersonate any remote user. This issue has been patched in version 2023.11.1-beta.1.
Overview
- CVE ID
- CVE-2023-49079
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-11-29T18:56:17.189Z
- Last Modified Date
- 2023-11-29T18:56:17.189Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://github.com/misskey-dev/misskey/security/advisories/GHSA-3f39-6537-3cgc | x_refsource_CONFIRM |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-49079 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49079 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 13:23:23 | Added to TrackCVE |