Lucene search

@huntr_aiCVELIST:CVE-2023-6599

HistoryDec 08, 2023 - 12:00 a.m.

CVE-2023-6599 Missing Standardized Error Handling Mechanism in microweber/microweber

2023-12-0800:00:32

CWE-544

@huntr_ai

www.cve.org

cve-2023-6599

github repository

security vulnerability

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

4.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0.

CNA Affected

[
  {
    "vendor": "microweber",
    "product": "microweber/microweber",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "2.0",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/microweber/microweber/commit/f7eb9e1c6e801346f07f3b0164a01ac5f2ca5cfd

huntr.com/bounties/6198785c-bf60-422e-9b80-68a6e658a10e

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

4.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVELIST:CVE-2023-6599