ByteOS Network

CVE Vulnerability Details :

CVE-2023-5192

PUBLISHED

More Info Official Page

Assigner-@huntrdev

Assigner Org ID-c09c270a-b464-47c1-9133-acb35b22c19a

Published At-26 Sep, 2023 | 07:34

Updated At-24 Sep, 2024 | 14:21

▼CVE Numbering Authority (CNA)

Excessive Data Query Operations in a Large Data Table in pimcore/demo

Excessive Data Query Operations in a Large Data Table in GitHub repository pimcore/demo prior to 10.3.0.

Affected Products

Vendor

Pimcore

Product

pimcore/demo

Versions

Affected

From unspecified before 10.3.0 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-1049	CWE-1049 Excessive Data Query Operations in a Large Data Table

Metrics

Version	Base score	Base severity	Vector
3.0	6.1	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H

References

Hyperlink	Resource
https://huntr.dev/bounties/65c954f2-79c3-4672-8846-a3035e7a1db7	N/A
https://github.com/pimcore/demo/commit/a2a7ff3b565882aefb759804aac4a51afb458f1f	N/A

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://huntr.dev/bounties/65c954f2-79c3-4672-8846-a3035e7a1db7	x_transferred
https://github.com/pimcore/demo/commit/a2a7ff3b565882aefb759804aac4a51afb458f1f	x_transferred

2. CISA ADP Vulnrichment

Affected Products

Vendor

Pimcore

Product

pimcore

CPEs

cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:*

Default Status

unknown

Versions

Affected

From 0 before 10.3.0 (custom)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Affected

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References