Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2023-0833

Published: 27/09/2023 Updated: 07/11/2023
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Okhttp

Vulnerability Summary

A flaw was found in Red Hat's AMQ-Streams, which ships a version of the OKHttp component with an information disclosure flaw via an exception triggered by a header containing an illegal value. This issue could allow an authenticated malicious user to access information outside of their regular permissions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

squareup okhttp

redhat a-mq streams

Vendor Advisories

Red Hat: Moderate: Red Hat AMQ Streams 2.2.1 release and security update
Synopsis Moderate: Red Hat AMQ Streams 221 release and security update Type/Severity Security Advisory: Moderate Topic Red Hat AMQ Streams 221 is now available from the Red Hat Customer PortalRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, wh ...
Red Hat: Important: Red Hat AMQ Streams 2.4.0 release and security update
概述 Important: Red Hat AMQ Streams 240 release and security update 类型/严重性 Security Advisory: Important 标题 Red Hat AMQ Streams 240 is now available from the Red Hat Customer PortalRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base scor ...
Red Hat:
Description<!----> This CVE is under investigation by Red Hat Product Security ...

References

CWE-209https://access.redhat.com/errata/RHSA-2023:1241https://access.redhat.com/security/cve/CVE-2023-0833https://access.redhat.com/errata/RHSA-2023:3223https://bugzilla.redhat.com/show_bug.cgi?id=2169845https://github.com/square/okhttp/issues/6738https://access.redhat.com/errata/RHSA-2023:1241https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2023-0833
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook