Approved changes feed: RSS · Atom

cpe:2.3:a:alibabacloud:nacos_spring_project:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlibabacloud (7b032efb-df85-561b-868c-9ebd1d94a838)
ProductNacos Spring Project (c78d6ced-58a7-5151-98f6-d6f0043e807f)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-39106 vulnerable 2026-06-08 06:09:35.763712 Details available
An issue in Nacos Group Nacos Spring Project v.1.1.1 and before allows a remote attacker to execute arbitrary code via the SnakeYamls Constructor() component.
Published: 2023-08-21T00:00:00.000Z
Updated: 2024-10-07T15:34:18.411Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.