CVE-2023-2859

HIGH

nilsteampassnet/teampass <3.0.9 - Code Injection

Title source: llm

Description

Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.9.

Exploits (1)

nomisec WRITEUP
by mnqazi · poc
https://github.com/mnqazi/CVE-2023-2859

References (2)

Scores

CVSS v3 8.8
EPSS 0.0582
EPSS Percentile 90.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (2)
nilsteampassnet/teampass 0 - 3.0.9Packagist
teampass/teampass < 3.0.9
Published May 24, 2023
Tracked Since Feb 18, 2026