Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-27162

Published: 31/03/2023 Updated: 07/04/2023
CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

openapi-generator up to v6.4.0 exists to contain a Server-Side Request Forgery (SSRF) via the component /api/gen/clients/{language}. This vulnerability allows malicious users to access network resources and sensitive information via a crafted API request.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openapi-generator openapi generator

Github Repositories

https://github.com/limithit/modsecurity-rule

modsecurity-rule 生成一些常用规则,如防止爆力破解账密、log4j2以及近几年CVE漏洞 ModSecurity 是一个用于检测和防止 Web 应用程序攻击的开源 Web 应用程序防火墙(WAF)。ModSecurity 可以使用一组规则来匹配和处理请求和响应。每个规则都有一个唯一的 ID,用于标识和引用该规则1。 ModSecurity 规

References

CWE-918https://notes.sjtu.edu.cn/s/2_yki_2Xqhttps://github.com/OpenAPITools/openapi-generatorhttps://gist.github.com/b33t1e/6121210ebd9efd4f693c73b830d8ab08http://openapi-generator.comhttps://nvd.nist.govhttps://github.com/limithit/modsecurity-rule
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310CVE-2024-21683CVE-2024-22187chromedeserializationXPath injectionCVE-2024-27842denial of serviceCVE-2024-24851googleCVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook