CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-2968

A remote attacker can trigger a denial of service in the socket.remoteAddress variable, by sending a crafted HTTP request. Usage of the undefined variable raises a TypeError exception.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.8%

CVSS Severity

CVSS v3 Score 7.5

References

https://research.jfrog.com/vulnerabilities/undefined-variable-usage-in-proxy-leads-to-remote-denial-of-service-xray-520917
https://research.jfrog.com/vulnerabilities/undefined-variable-usage-in-proxy-leads-to-remote-denial-of-service-xray-520917

Products affected by CVE-2023-2968

Proxy Project » Proxy » Version: 2.0.0

cpe:2.3:a:proxy_project:proxy:2.0.0
Proxy Project » Proxy » Version: 2.1.1

cpe:2.3:a:proxy_project:proxy:2.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2968

Products

Pricing

Contact Us