Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2023/11/16 7:45 p.m.75 views

CVE-2023-34062

A flaw was found in the Reactor Netty HTTP Server. If the server is configured to serve static resources, an attacker can use a specially crafted URL that may allow unauthorized access to privileged data on the server...

7.5CVSS7.3AI score0.01124EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2023/11/15 12:30 p.m.8 views

ai.optfor:spring-openai-api (>=0.2.2 <=0.3.25), be.vlaanderen.informatievlaanderen.ldes.ldio:ldio-azure-blob-out (=2.12.0) +750 more potentially affected by CVE-2023-34062 via io.projectreactor.netty:reactor-netty-http (>=1.1.0 <=1.1.12)

io.projectreactor.netty:reactor-netty-http MAVEN version =1.1.0, =0.2.2, =0.14.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0-RC2 and more Source cves: CVE-2023-34062 Source advisory: OSV:GHSA-XJHV-P3FV-X24R...

7.5CVSS7.2AI score0.01124EPSS
Exploits0
NVD
NVD
added 2023/11/15 10:15 a.m.19 views

CVE-2023-34062

In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack. Specifically, an application is vulnerable if Reactor Netty HTTP Server is configured t...

7.5CVSS0.01124EPSS
Exploits0References1
Chainguard
Chainguard
added 2023/11/15 10:15 a.m.857 views

CVE-2023-34062 vulnerabilities

Vulnerabilities for packages: trino, elasticsearch...

7.5CVSS7.2AI score0.01124EPSS
Exploits0
Wolfi
Wolfi
added 2023/11/15 10:15 a.m.83 views

CVE-2023-34062 vulnerabilities

Vulnerabilities for packages: trino...

7.5CVSS7.3AI score0.01124EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/11/15 9:46 a.m.17 views

CVE-2023-34062

In Reactor Netty HTTP Server, versions 1.1.x prior to 1.1.13 and versions 1.0.x prior to 1.0.39, a malicious user can send a request using a specially crafted URL that can lead to a directory traversal attack. Specifically, an application is vulnerable if Reactor Netty HTTP Server is configured t...

7.5CVSS6.6AI score0.01124EPSS
Exploits0References1
CVE
CVE
added 2023/11/15 9:46 a.m.1066 views

CVE-2023-34062

CVE-2023-34062 affects Reactor Netty HTTP Server. Versions 1.1.x prior to 1.1.13 and 1.0.x prior to 1.0.39 are vulnerable when the server is configured to serve static resources. A crafted URL can trigger a directory traversal (path traversal) vulnerability, allowing access to restricted files. T...

7.5CVSS7.2AI score0.01124EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder