CVE-2023-32090
published 2023-08-07CVE-2023-32090: Pega platform clients who are using versions 6.1 through 7.3.1 may be utilizing default credentials
PriorityP353critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.52%
40.2th percentile
Pega platform clients who are using versions 6.1 through 7.3.1 may be
utilizing default credentials
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pega | pega_platform | 6.1 – 7.3.1 | — |
| pegasystems | pega_platform | 6.1 – 7.3.1 | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9356-5wvv-mwc4: Pega platform clients who are using versions 6
ghsa_unreviewed·2023-08-07
CVE-2023-32090 [CRITICAL] CWE-1393 GHSA-9356-5wvv-mwc4: Pega platform clients who are using versions 6
Pega platform clients who are using versions 6.1 through 7.3.1 may be
utilizing default credentials
Red Hat
kernel: ubi: Fix unreferenced object reported by kmemleak in ubi_resize_volume()
vendor_redhat·2025-09-16·CVSS 5.5
CVE-2023-53271 [MEDIUM] CWE-772 kernel: ubi: Fix unreferenced object reported by kmemleak in ubi_resize_volume()
kernel: ubi: Fix unreferenced object reported by kmemleak in ubi_resize_volume()
In the Linux kernel, the following vulnerability has been resolved:
ubi: Fix unreferenced object reported by kmemleak in ubi_resize_volume()
There is a memory leaks problem reported by kmemleak:
unreferenced object 0xffff888102007a00 (size 128):
comm "ubirsvol", pid 32090, jiffies 4298464136 (age 2361.231s)
hex dump (first 32 bytes):
ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................
ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................
backtrace:
[] __kmalloc+0x4d/0x150
[] ubi_eba_create_table+0x76/0x170 [ubi]
[] ubi_resize_volume+0x1be/0xbc0 [ubi]
[] ubi_cdev_ioctl+0x701/0x1850 [ubi]
[] __x64_sys_ioctl+0x11d/0x170
[] do_syscall_64+0x35/0x80
[] entry_SYSCALL_64_after_hwframe+0x46/0xb
No detection rules found.
No public exploits indexed.
2023-08-07
Published