CVE-2023-51982 | CrateDB 5.5.1 Admin UI X-Real IP improper authentication (Issue 15231)

Inserito da Angelo Barbosa | Gen 30, 2024 | CVE

A vulnerability classified as critical was found in CrateDB 5.5.1. This vulnerability affects unknown code of the component Admin UI. The manipulation of the argument X-Real IP leads to improper authentication.

This vulnerability was named CVE-2023-51982. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2023-51982 | CrateDB 5.5.1 Admin UI X-Real IP improper authentication (Issue 15231)

Post correlati

CVE-2024-2757 | PHP up to 8.3.4 mb_encode_mimeheader infinite loop

CVE-2024-21919 | Rockwell Automation Arena Simulation up to 16.20.02 uninitialized pointer

CVE-2023-40555 | UX-themes Flatsome Theme up to 3.17.5 on WordPress deserialization

CVE-2024-39332 | Webswing 23.2.2 path traversal (usd-2024-0008)