CVE-2023-1269
published 2023-03-08CVE-2023-1269: Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
PriorityP345critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.74%
50.1th percentile
Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| alextselegidis | alextselegidis_easyappointments | >= unspecified < 1.5.0 | 1.5.0 |
| alextselegidis | easyappointments | 0 – 1.4.3 | — |
| easyappointments | easyappointments | < 1.5.0 | 1.5.0 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
vendor_redhat7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Easy!Appointments uses hard-coded credentials
osv·2023-03-08
CVE-2023-1269 [CRITICAL] Easy!Appointments uses hard-coded credentials
Easy!Appointments uses hard-coded credentials
Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments 1.4.3 and prior. A patch is available and anticipated to be part of version 1.5.0.
GHSA
Easy!Appointments uses hard-coded credentials
ghsa·2023-03-08
CVE-2023-1269 [CRITICAL] CWE-798 Easy!Appointments uses hard-coded credentials
Easy!Appointments uses hard-coded credentials
Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments 1.4.3 and prior. A patch is available and anticipated to be part of version 1.5.0.
Red Hat
kernel: soundwire: qcom: fix storing port config out-of-bounds
vendor_redhat·2025-10-01·CVSS 7.1
CVE-2023-53465 [HIGH] CWE-787 kernel: soundwire: qcom: fix storing port config out-of-bounds
kernel: soundwire: qcom: fix storing port config out-of-bounds
In the Linux kernel, the following vulnerability has been resolved:
soundwire: qcom: fix storing port config out-of-bounds
The 'qcom_swrm_ctrl->pconfig' has size of QCOM_SDW_MAX_PORTS (14),
however we index it starting from 1, not 0, to match real port numbers.
This can lead to writing port config past 'pconfig' bounds and
overwriting next member of 'qcom_swrm_ctrl' struct. Reported also by
smatch:
drivers/soundwire/qcom.c:1269 qcom_swrm_get_port_config() error: buffer overflow 'ctrl->pconfig' 14 <= 14
Package: kernel (Red Hat Enterprise Linux 10) - Not affected
Package: kernel (Red Hat Enterprise Linux 6) - Not affected
Package: kernel (Red Hat Enterprise Linux 7) - Not affected
Package: kernel-rt (Red Hat Enterprise Linu
No detection rules found.
No public exploits indexed.
https://github.com/alextselegidis/easyappointments/commit/2731d2f17c5140c562426b857e9f5d63da5c4593https://huntr.dev/bounties/91c31eb6-024d-4ad3-88fe-f15b03fd20f5https://github.com/alextselegidis/easyappointments/commit/2731d2f17c5140c562426b857e9f5d63da5c4593https://huntr.dev/bounties/91c31eb6-024d-4ad3-88fe-f15b03fd20f5
2023-03-08
Published