CVE-2023-1541

MEDIUM Year: 2023
CVSS v3 Score
6.0
Medium
Weakness Type
CWE-840
View all →

Vulnerability Description

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

Related Vulnerabilities

CVE-2023-6832

MEDIUM
CVSS:6.0(Medium)

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.

CWE-8402023

CVE-2019-15608

MEDIUM
CVSS:5.9(Medium)

The package integrity validation in yarn < 1.19.0 contains a TOCTOU vulnerability where the hash is computed before writing a package to cache. It's not computed again when reading from the cache. Thi...

CWE-8402019

CVE-2022-32208

MEDIUM
CVSS:5.9(Medium)

When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it t...

CWE-8402022

CVE-2023-6566

MEDIUM
CVSS:5.9(Medium)

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.

CWE-8402023

CVE-2022-4719

MEDIUM
CVSS:5.7(Medium)

Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.

CWE-8402022

CVE-2024-6577

MEDIUM
CVSS:6.3(Medium)

In the latest version of pytorch/serve, the script 'upload_results_to_s3.sh' references the S3 bucket 'benchmarkai-metrics-prod' without ensuring its ownership or confirming its accessibility. This co...

CWE-8402024