CVE-2023-25827 — Vulnetix

CVE-2023-25827 PUBLISHED CVSS 8.199999809265137 HIGH

Cross Site Scripting in OpenTSDB

EPSS 0.57% · 69.2th percentile

Risk Scores

CVSS 3.1

8.199999809265137

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

EPSS Score

0.57%

69.2th percentile

Affected Products

Vendor	Product	Versions
opentsdb	opentsdb	1.0.0
Maven	net.opentsdb:opentsdb	0
OpenTSDB	OpenTSDB	0

Exploit Intelligence

https://www.synopsys.com/blogs/software-security/opentsdb/ (circl)
https://github.com/OpenTSDB/opentsdb/pull/2274 (circl)
ET EXPLOIT OpenTSDB RCE in HTTP Request M2 (CVE-2023-25827) (emergingthreats)
ET EXPLOIT OpenTSDB RCE in HTTP Request M2 (CVE-2023-25827) (emergingthreats)
ET EXPLOIT OpenTSDB RCE in HTTP Request M2 (CVE-2023-25827) (emergingthreats)
ET EXPLOIT OpenTSDB RCE in HTTP Request M1 (CVE-2023-25827) (emergingthreats)
ET EXPLOIT OpenTSDB RCE in HTTP Request M1 (CVE-2023-25827) (emergingthreats)
ET EXPLOIT OpenTSDB RCE in HTTP Request M1 (CVE-2023-25827) (emergingthreats)

Timeline

Apr 11, 2023 Fix PR Merged
May 3, 2023 CVE Published
May 4, 2023 EPSS Score
May 10, 2023 CVE Updated
Jun 10, 2023 EPSS Score
Jul 17, 2023 EPSS Score
Aug 23, 2023 EPSS Score
Sep 29, 2023 EPSS Score
Nov 5, 2023 EPSS Score
Dec 12, 2023 EPSS Score
Jan 18, 2024 EPSS Score
Feb 24, 2024 EPSS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›