CVE-2023-44313

Server-Side Request Forgery (SSRF) in go/github.com/apache/servicecomb-service-center

Identifiers

GHSA-9xc9-xq7w-vpcr, CVE-2023-44313

Package Slug

go/github.com/apache/servicecomb-service-center

Vulnerability

Server-Side Request Forgery (SSRF)

Description

Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0(include).

Users are recommended to upgrade to version 2.2.0, which fixes the issue.

Affected Versions

All versions before 2.2.0

Solution

Upgrade to version 2.2.0 or above.

Last Modified

2024-02-01

source