Lucene search

[email protected]CVE-2023-50093

HistoryJan 03, 2024 - 2:15 p.m.

CVE-2023-50093

2024-01-0314:15:08

CWE-74

[email protected]

web.nvd.nist.gov

apiida

api gateway

v2023.2.2

host header injection

cve-2023-50093

security vulnerability

nvd

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

APIIDA API Gateway Manager for Broadcom Layer7 v2023.2.2 is vulnerable to Host Header Injection.

Affected configurations

NVD

Node

apiidaapi_gateway_managerMatch2023.02.02

CPENameOperatorVersion
apiida:api_gateway_managerapiida api gateway managereq2023.02.02

CPE	Name	Operator	Version
apiida:api_gateway_manager	apiida api gateway manager	eq	2023.02.02

References

apiida.com/product/apiida-api-gateway-manager/

senscybersecurity.nl/cve-2023-50093-explained/

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for CVE-2023-50093

cvelist1 prion1 nvd1