exploitDog

GHSA-g4jh-vmj9-2xmw

Опубликовано: 06 мая 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

An issue was discovered in Archer Platform 6 before 2024.03. There is an X-Forwarded-For Header Bypass vulnerability. An unauthenticated attacker could potentially bypass intended whitelisting when X-Forwarded-For header is enabled.

An issue was discovered in Archer Platform 6 before 2024.03. There is an X-Forwarded-For Header Bypass vulnerability. An unauthenticated attacker could potentially bypass intended whitelisting when X-Forwarded-For header is enabled.

Ссылки

EPSS

Процентиль: 42%

0.002

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2024-34093

CVSS3: 5.3

nvd

почти 2 года назад

An issue was discovered in Archer Platform 6 before 2024.03. There is an X-Forwarded-For Header Bypass vulnerability. An unauthenticated attacker could potentially bypass intended whitelisting when X-Forwarded-For header is enabled.

EPSS

Процентиль: 42%

0.002

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-287