CVE-2023-5571

Exploit

EPSS 0.64%
Veröffentlicht 13.10.2023 10:15:10
Zuletzt bearbeitet 21.11.2024 08:42:02
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

Improper Input Validation in vriteio/vrite

Improper Input Validation in GitHub repository vriteio/vrite prior to 0.3.0.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Vrite ≫ Vrite Version < 0.3.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.64%	0.459

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
security@huntr.dev	6.5	3.9	2.5	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://github.com/vriteio/vrite/commit/1877683b932bb33fb20d688e476284b70bb9fe23

Patch

https://huntr.dev/bounties/926ca25f-dd4a-40cf-8e6b-9d7b5938e95a

Patch

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-5571

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-5571

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-5571

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-5571