A vulnerability classified as problematic has been found in OpenDNS OpenResolve. This affects an unknown part of the file…
VulDB·CWE-117·Published 2023-01-02
Es wurde eine Schwachstelle in OpenDNS OpenResolve entdeckt. Sie wurde als problematisch eingestuft. Es geht dabei um eine nicht klar definierte Funktion der Datei resolverapi/endpoints.py. Mit der Manipulation mit unbekannten Daten kann eine improper output neutralization for logs-Schwachstelle ausgenutzt werden. Der Patch wird als 9eba6ba5abd89d0e36a008921eb307fcef8c5311 bezeichnet. Als bestmögliche Massnahme wird Patching empfohlen.
A vulnerability classified as problematic has been found in OpenDNS OpenResolve. This affects an unknown part of the file resolverapi/endpoints.py. The manipulation leads to improper output neutralization for logs. The identifier of the patch is 9eba6ba5abd89d0e36a008921eb307fcef8c5311. It is recommended to apply a patch to fix this issue. The identifier VDB-217197 was assigned to this vulnerability.
A vulnerability classified as problematic has been found in OpenDNS OpenResolve. This affects an unknown part of the file resolverapi/endpoints.py. The manipulation leads to improper output neutralization for logs. The identifier of the patch is 9eba6ba5abd89d0e36a008921eb307fcef8c5311. It is recommended to apply a patch to fix this issue. The identifier VDB-217197 was assigned to this vulnerability.
Una vulnerabilidad ha sido encontrada en OpenDNS OpenResolve y clasificada como problemática. Esto afecta a una parte desconocida del archivo resolverapi/endpoints.py. La manipulación conduce a una neutralización inadecuada de la salida de troncos. El identificador del parche es 9eba6ba5abd89d0e36a008921eb307fcef8c5311. Se recomienda aplicar un parche para solucionar este problema. A esta vulnerabilidad se le asignó el identificador VDB-217197.
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 2.0 | Primary | cve.org | 4.1 | — | — | AV:A/AC:L/Au:S/C:N/I:P/A:P |
| 2.0 | Primary | cve.org | 4.1 | — | — | AV:A/AC:L/Au:S/C:N/I:P/A:P |
| 2.0 | Secondary | NVD | 4.1 | 5.1 | 4.9 | AV:A/AC:L/Au:S/C:N/I:P/A:P |
| 3.0 | Primary | cve.org | 4.6 | — | — | CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |
| 3.0 | Primary | cve.org | 4.6 | — | — | CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |
| 3.1 | Primary | NVD | 9.8 | 3.9 | 5.9 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 3.1 | Primary | cve.org | 4.6 | — | — | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |
| 3.1 | Primary | cve.org | 4.6 | — | — | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |
| 3.1 | Secondary | NVD | 4.6 | 2.1 | 2.5 | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |