{"id":"GO-2023-1925","summary":"Weave GitOps Terraform Controller Information Disclosure Vulnerability in github.com/weaveworks/tf-controller","details":"Weave GitOps Terraform Controller Information Disclosure Vulnerability in github.com/weaveworks/tf-controller","aliases":["CVE-2023-34236","GHSA-6hvv-j432-23cv"],"modified":"2026-03-17T04:46:56.675880Z","published":"2024-08-20T20:31:38Z","database_specific":{"url":"https://pkg.go.dev/vuln/GO-2023-1925","review_status":"UNREVIEWED"},"references":[{"type":"ADVISORY","url":"https://github.com/weaveworks/tf-controller/security/advisories/GHSA-6hvv-j432-23cv"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-34236"},{"type":"FIX","url":"https://github.com/weaveworks/tf-controller/commit/28282bc644054e157c3b9a3d38f1f9551ce09074"},{"type":"FIX","url":"https://github.com/weaveworks/tf-controller/commit/6323b355bd7f5d2ce85d0244fe0883af3881df4e"},{"type":"FIX","url":"https://github.com/weaveworks/tf-controller/commit/9708fda28ccd0466cb0a8fd409854ab4d92f7dca"},{"type":"FIX","url":"https://github.com/weaveworks/tf-controller/commit/98a0688036e9dbcf43fa84960d9a1ef3e09a69cf"},{"type":"REPORT","url":"https://github.com/weaveworks/tf-controller/issues/637"},{"type":"REPORT","url":"https://github.com/weaveworks/tf-controller/issues/649"}],"affected":[{"package":{"name":"github.com/weaveworks/tf-controller","ecosystem":"Go","purl":"pkg:golang/github.com/weaveworks/tf-controller"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.14.4"},{"introduced":"0.15.0-rc.1"},{"fixed":"0.15.0-rc.5"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2023-1925.json"}}],"schema_version":"1.7.5"}