Github.Com Apache Servicecomb-Service-Center vulnerabilities
3 known vulnerabilities affecting github.com/apache_servicecomb-service-center.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-44313HIGH≥ 0, < 2.2.02024-01-31
CVE-2023-44313 [HIGH] CWE-918 Apache ServiceComb Service-Center Server-Side Request Forgery vulnerability
Apache ServiceComb Service-Center Server-Side Request Forgery vulnerability
Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0 (included). Users are recommended to upgrade to version 2.2.0, which fixes the issue.
ghsaosv
CVE-2023-44312MEDIUM≥ 0, < 2.2.02024-01-31
CVE-2023-44312 [MEDIUM] CWE-200 Apache ServiceComb Service-Center Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Apache ServiceComb Service-Center Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Exposure of Sensitive Information to an Unauthorized Actor in Apache ServiceComb Service-Center. This issue affects Apache ServiceComb Service-Center before 2.1.0 (included). Users are recommended to upgrade to version 2.2.0, which fixes the issue.
ghsaosv
CVE-2021-21501HIGH≥ 0, < 2.0.02021-09-01
CVE-2021-21501 [HIGH] CWE-22 Path traversal in ServiceCenter
Path traversal in ServiceCenter
Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0.
ghsaosv