Vulnerabilities > CVE-2023-42798 - Unspecified vulnerability in Hollowaykeanho Automataci

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

hollowaykeanho

critical

NVD

Published: 2023-09-22

Updated: 2023-09-26

Summary

AutomataCI is a template git repository equipped with a native built-in semi-autonomous CI tools. An issue in versions 1.4.1 and below can let a release job reset the git root repository to the first commit. Version 1.5.0 has a patch for this issue. As a workaround, make sure the `PROJECT_PATH_RELEASE` (e.g. `releases/`) directory is manually and actually `git cloned` properly, making it a different git repostiory from the root git repository.

Vulnerable Configurations

Part	Description	Count
Application	Hollowaykeanho Hollowaykeanho Automataci - Hollowaykeanho Automataci 1.3.0 Hollowaykeanho Automataci 1.3.1 Hollowaykeanho Automataci 1.4.0 Hollowaykeanho Automataci 1.4.1	5

Summary

Vulnerable Configurations

References