One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8318626 |
| Date de publication | 2023-03-14 18:15:10 (vue: 2023-03-14 21:08:17) |
| Titre | CVE-2023-27588 |
| Texte | Hasura is an open-source product that provides users GraphQL or REST APIs. A path traversal vulnerability has been discovered within Hasura GraphQL Engine prior to versions 1.3.4, 2.55.1, 2.20.1, and 2.21.0-beta1. Projects running on Hasura Cloud were not vulnerable. Self-hosted Hasura Projects with deployments that are publicly exposed and not protected by a WAF or other HTTP protection layer should be upgraded to version 1.3.4, 2.55.1, 2.20.1, or 2.21.0-beta1 to receive a patch. |
| Notes | |
| Envoyé | Oui |
| Condensat | 2023 27588 apis are been beta1 cloud cve deployments discovered engine exposed graphql has hasura hosted http layer not open other patch path prior product projects protected protection provides publicly receive rest running self should source traversal upgraded users version versions vulnerability vulnerable waf within |
| Tags | Vulnerability Cloud |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.