How severe is CVE-2023-26303?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2023-26303?

This is classified as CWE-173, which is a common weakness in software security.

CVE-2023-26303

MEDIUM Year: 2023

CVSS v3 Score

5.5

Medium

Weakness Type

CWE-173

View all →

Vulnerability Description

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.

CVE-2023-26302

MEDIUM

CVSS:5.5(Medium)

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

CWE-1732023

CVE-2024-54158

MEDIUM

CVSS:5.3(Medium)

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding

CWE-1732024

CVE-2023-26302

MEDIUM

CVSS:5.5(Medium)

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

CWE-1732023

CVE-2024-54158

MEDIUM

CVSS:5.3(Medium)

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding

CWE-1732024

CVE-2023-26303

Vulnerability Description

Related Vulnerabilities

CVE-2023-26302

CVE-2024-54158

CVE-2023-26302

CVE-2024-54158