Improper Input Validation

2023-04-1916:52:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vitessio

input validation

keyspaces

availability

0.001 Low

EPSS

Percentile

35.3%

JSON

github.com/vitessio/vitess is vulnerable to Improper Input Validation. The vulnerability is due to allowing users to create keyspaces that can deny access to already existing keyspaces which allows a malicious attacker to create unnecessary keyspaces resulting in availability issues.

CPENameOperatorVersion
github.com/vitessio/vitesseqv15.0.0-rc1
github.com/vitessio/vitesslev16.0.0
github.com/vitessio/vitesseqv15.0.0-rc1
github.com/vitessio/vitesslev16.0.0