CVE-2023-25805
published 2023-02-20CVE-2023-25805: versionn, software for changing version information across multiple files, has a command injection vulnerability in all versions prior to version 1.1.0. This…
PriorityP259critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.58%
72.5th percentile
versionn, software for changing version information across multiple files, has a command injection vulnerability in all versions prior to version 1.1.0. This issue is patched in version 1.1.0.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| commenthol | versionn | < 1.1.0 | 1.1.0 |
| versionn_project | versionn | < 1.1.0 | 1.1.0 |
| versionn_project | versionn | >= 0 < 1.1.0 | 1.1.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Versionn Command Injection Vulnerability
osv·2023-02-22
CVE-2023-25805 [CRITICAL] Versionn Command Injection Vulnerability
Versionn Command Injection Vulnerability
### Impact
Command Injection Vulnerability. All versions <1.1.0 are affected.
### Patches
Please upgrade to [email protected]
GHSA
Versionn Command Injection Vulnerability
ghsa·2023-02-22
CVE-2023-25805 [CRITICAL] CWE-77 Versionn Command Injection Vulnerability
Versionn Command Injection Vulnerability
### Impact
Command Injection Vulnerability. All versions <1.1.0 are affected.
### Patches
Please upgrade to [email protected]
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/commenthol/versionn/commit/2ca128823efe962b37f2698f0eb530c2b124842dhttps://github.com/commenthol/versionn/security/advisories/GHSA-fj78-2vc5-f6cmhttps://github.com/commenthol/versionn/commit/2ca128823efe962b37f2698f0eb530c2b124842dhttps://github.com/commenthol/versionn/security/advisories/GHSA-fj78-2vc5-f6cm
2023-02-20
Published