CVE-2023-45757
published 2023-10-16CVE-2023-45757: Security vulnerability in Apache bRPC 1.6.0, download link: https://dist.apache.org/repos/dist/release/brpc/1.6.1/ 2. If you are using an old version of bRPC…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Security vulnerability in Apache bRPC 1.6.0, download link: https://dist.apache.org/repos/dist/release/brpc/1.6.1/
2. If you are using an old version of bRPC and hard to upgrade, you can apply this patch: https://github.com/apache/brpc/pull/2411
3. disable rpcz feature
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | brpc | < 1.6.1 | 1.6.1 |
| apache_software_foundation | apache_brpc | 0.9.0 – 1.6.0 | — |