6.5
CVE-2023-5192
- EPSS 0.78%
- Veröffentlicht 27.09.2023 15:19:42
- Zuletzt bearbeitet 21.11.2024 08:41:16
- Quelle security@huntr.dev
- CVE-Watchlists
- Unerledigt
LoginExcessive Data Query Operations in a Large Data Table in pimcore/demo
Excessive Data Query Operations in a Large Data Table in GitHub repository pimcore/demo prior to 10.3.0.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.78% | 0.512 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 3.9 | 2.5 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
|
| security@huntr.dev | 6.1 | 0.9 | 5.2 |
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H
|
CWE-1049 Excessive Data Query Operations in a Large Data Table
The product performs a data query with a large number of joins and sub-queries on a large data table.
https://github.com/pimcore/demo/commit/a2a7ff3b565882aefb759804aac4a51afb458f1f
https://huntr.dev/bounties/65c954f2-79c3-4672-8846-a3035e7a1db7