microshift vulnerabilities

Known vulnerabilities in the microshift package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M HTTP Request Smuggling	*
L Incorrect Authorization	*
L Incorrect Authorization	*
H Asymmetric Resource Consumption (Amplification)	*
M Improper Input Validation	*
H Allocation of Resources Without Limits or Throttling	*
H Improper Validation of Syntactic Correctness of Input	*
M Information Exposure	*
M Information Exposure	*
L Improper Verification of Cryptographic Signature	*
H Allocation of Resources Without Limits or Throttling	*
L Improper Handling of Exceptional Conditions	*
H Information Exposure	*
M Use of Uninitialized Variable	*
M Improper Input Validation	*
H Resource Exhaustion	*
L Information Exposure	*
H Memory Leak	*
M Improper Handling of Highly Compressed Data (Data Amplification)	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
H Improper Input Validation	*
M Information Exposure	*
M Resource Exhaustion	*
M Allocation of Resources Without Limits or Throttling	*
H Resource Exhaustion	*
H Resource Exhaustion	*
M CVE-2023-39321	*
M Cross-site Scripting (XSS)	*
M Allocation of Resources Without Limits or Throttling	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Resource Exhaustion	*
M CVE-2023-2727	*
M CVE-2023-2728	*
M Directory Traversal	*
M Improper Handling of Unicode Encoding	*
M Improper Handling of Unicode Encoding	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Resource Exhaustion	*
M Arbitrary Code Injection	*
M Resource Exhaustion	*
M Incorrect Default Permissions	*
M Improper Input Validation	*
M Authentication Bypass	*
M Directory Traversal	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Path Equivalence	*

Vulnerability

Vulnerable Version

HTTP Request Smuggling