VDB
CVE-2023-50710
CVE-2023-50710
PUBLISHED
CVSS 4.199999809265137 MEDIUM
Named path parameters can be overridden in TrieRouter
EPSS 0.36% · 58.5th percentile
Risk Scores
CVSS v3.1
4.199999809265137
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS Score
0.36%
58.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| honojs | hono | < 3.11.7, < 3.11.7 |
| hono | hono | 0, 0 |
| npm | hono | 0, 0 |
Timeline
- Jan 21, 1970 Security Advisory
- Dec 14, 2023 CVE Published
- Dec 15, 2023 EPSS Score
- Dec 19, 2023 CVE Updated
- Dec 19, 2023 PoC Published
- Jan 11, 2024 PoC Published
- Jan 13, 2024 EPSS Score
- Feb 11, 2024 EPSS Score
- Mar 11, 2024 EPSS Score
- Apr 10, 2024 EPSS Score
- May 9, 2024 EPSS Score
- Jun 7, 2024 EPSS Score
References
- https://github.com/honojs/hono/security/advisories/GHSA-f6gv-hh8j-q8vq url
- https://github.com/honojs/hono/commit/8e2b6b08518998783f66d31db4f21b1b1eecc4c8 url
- https://github.com/honojs/hono/releases/tag/v3.11.7 url
- https://nvd.nist.gov/vuln/detail/CVE-2023-50710 advisory
- https://github.com/honojs/hono package