216.73.217.64

CVE-2023-47639

· Published 03/04/2025 17:15 · Modified 03/04/2025 17:15

Labels: CVE-2023-47639 2025-04-03CVE-2023-47639CWE-209[email protected]

Essential information

Published
03/04/2025 17:15
Modified
03/04/2025 17:15
Author
Creator
CVSS
5.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS metrics

Description

API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. From 3.2.0 until 3.2.4, exception messages, that are not HTTP exceptions, are visible in the JSON error response. This vulnerability is fixed in 3.2.5.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
api platform / api platform core cpe:2.3:a:api_platform:api_platform_core:3.2.0-3.2.4:*:*:*:*:*:*:*
api platform / api platform core cpe:2.3:a:api_platform:api_platform_core:3.2.5:*:*:*:*:*:*:*

References