Lucene search

[email protected]CVE-2023-6599

HistoryDec 08, 2023 - 12:15 a.m.

CVE-2023-6599

2023-12-0800:15:08

CWE-755

CWE-544

[email protected]

web.nvd.nist.gov

cve-2023-6599

github

repository

security

nvd

error handling

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0.

Affected configurations

NVD

Node

microwebermicroweberRange<2.0.0

CPENameOperatorVersion
microweber:microwebermicroweberlt2.0.0

CPE	Name	Operator	Version
microweber:microweber	microweber	lt	2.0.0

CNA Affected

[
  {
    "vendor": "microweber",
    "product": "microweber/microweber",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "2.0",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/microweber/microweber/commit/f7eb9e1c6e801346f07f3b0164a01ac5f2ca5cfd

huntr.com/bounties/6198785c-bf60-422e-9b80-68a6e658a10e

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVE-2023-6599

cvelist1 github1 osv2 nvd1 veracode1 prion1