Lucene search

PYSEC-2023-178

🗓️ 21 Sep 2023 15:00:15Reported by GoogleType

osv🔗 osv.dev👁 7 Views

plone.rest HTTP verb handling vulnerability patched in versions 2.0.1 and 3.0.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
OSV	plone.rest vulnerable to Denial of Service when ++api++ is used many times	21 Sep 202317:06	–	osv
OSV	CVE-2023-42457	21 Sep 202315:15	–	osv
NVD	CVE-2023-42457	21 Sep 202315:15	–	nvd
Vulnrichment	CVE-2023-42457 plone.rest vulnerable to Denial of Service when ++api++ is used many times	21 Sep 202314:49	–	vulnrichment
Veracode	Denial Of Service	22 Sep 202308:45	–	veracode
RedhatCVE	CVE-2023-42457	13 Feb 202519:35	–	redhatcve
CVE	CVE-2023-42457	21 Sep 202315:15	–	cve
Prion	Server side request forgery (ssrf)	21 Sep 202315:15	–	prion
Cvelist	CVE-2023-42457 plone.rest vulnerable to Denial of Service when ++api++ is used many times	21 Sep 202314:49	–	cvelist
Github Security Blog	plone.rest vulnerable to Denial of Service when ++api++ is used many times	21 Sep 202317:06	–	github

Source	Link
github	www.github.com/plone/plone.rest/security/advisories/GHSA-h6rp-mprm-xgcq
github	www.github.com/plone/plone.rest/commit/77846a9842889b24f35e8bedc2e9d461388d3302
github	www.github.com/plone/plone.rest/commit/43b4a7e86206e237e1de5ca3817ed071575882f7
openwall	www.openwall.com/lists/oss-security/2023/09/22/2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Sep 2023 15:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS37.5

EPSS0.00171

SSVC