{"id":"UBUNTU-CVE-2023-0771","details":"SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop.","modified":"2025-10-24T05:01:06Z","published":"2023-02-10T01:15:00Z","upstream":["CVE-2023-0771"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-0771"},{"type":"REPORT","url":"https://huntr.dev/bounties/2493f350-271b-4c38-9e1d-c8fa189c5ce1"},{"type":"REPORT","url":"https://github.com/ampache/ampache/commit/c456e66ef6fd8d11390181a40c66910ae01fbf4c"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2023-0771"}],"affected":[{"package":{"name":"ampache","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/ampache@3.6-rzb2779+dfsg-0ubuntu9.2?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["3.6-rzb2779+dfsg-0ubuntu5","3.6-rzb2779+dfsg-0ubuntu6","3.6-rzb2779+dfsg-0ubuntu7","3.6-rzb2779+dfsg-0ubuntu8","3.6-rzb2779+dfsg-0ubuntu9","3.6-rzb2779+dfsg-0ubuntu9.1","3.6-rzb2779+dfsg-0ubuntu9.2"],"ecosystem_specific":{"binaries":[{"binary_name":"ampache","binary_version":"3.6-rzb2779+dfsg-0ubuntu9.2"},{"binary_name":"ampache-common","binary_version":"3.6-rzb2779+dfsg-0ubuntu9.2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-0771.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}