Go modules package
github.com/apache/servicecomb-service-center
pkg:golang/github.com/apache/servicecomb-service-center
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-44313 | — | < 2.2.0 | 2.2.0 | Jan 31, 2024 | Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0(include). Users are recommended to upgrade to version 2. | ||
| CVE-2023-44312 | — | < 2.2.0 | 2.2.0 | Jan 31, 2024 | Exposure of Sensitive Information to an Unauthorized Actor in Apache ServiceComb Service-Center.This issue affects Apache ServiceComb Service-Center before 2.1.0 (include). Users are recommended to upgrade to version 2.2.0, which fixes the issue. | ||
| CVE-2021-21501 | — | < 2.0.0 | 2.0.0 | Aug 10, 2021 | Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0. |
- CVE-2023-44313Jan 31, 2024affected < 2.2.0fixed 2.2.0
Server-Side Request Forgery (SSRF) vulnerability in Apache ServiceComb Service-Center. Attackers can obtain sensitive server information through specially crafted requests.This issue affects Apache ServiceComb before 2.1.0(include). Users are recommended to upgrade to version 2.
- CVE-2023-44312Jan 31, 2024affected < 2.2.0fixed 2.2.0
Exposure of Sensitive Information to an Unauthorized Actor in Apache ServiceComb Service-Center.This issue affects Apache ServiceComb Service-Center before 2.1.0 (include). Users are recommended to upgrade to version 2.2.0, which fixes the issue.
- CVE-2021-21501Aug 10, 2021affected < 2.0.0fixed 2.0.0
Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0.