exploitDog

CVE-2023-6017

Опубликовано: 16 нояб. 2023

Источник: nvd

CVSS3: 8.7

CVSS3: 7.1

EPSS Низкий

Описание

H2O included a reference to an S3 bucket that no longer existed allowing an attacker to take over the S3 bucket URL.

Ссылки

https://huntr.com/bounties/6a69952f-a1ba-4dee-9d8c-e87f52508b58
Exploit
Third Party Advisory
https://huntr.com/bounties/6a69952f-a1ba-4dee-9d8c-e87f52508b58
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:h2o:h2o:-:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.00194

Низкий

8.7 High

CVSS3

7.1 High

CVSS3

Дефекты

CWE-840

NVD-CWE-Other

Связанные уязвимости

GHSA-pwcm-766j-45vc

CVSS3: 8.7

github

около 2 лет назад

H2O included a reference to an S3 bucket that no longer existed allowing an attacker to take over the S3 bucket URL.

EPSS

Процентиль: 42%

0.00194

Низкий

8.7 High

CVSS3

7.1 High

CVSS3

Дефекты

CWE-840

NVD-CWE-Other