What the vulnerability does
01Description
A man in the middle can redirect traffic to a malicious server in a compromised configuration.
CVSS base score
8.1/10
CVSS vector
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Key dates
02Disclosure timeline
April 10, 2023
CVE published
February 7, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2020-1755
CVE-2019-12620 Cisco HyperFlex Software Counter Value Injection Vulnerability
CVE-2024-53259 quic-go affected by an ICMP Packet Too Large Injection Attack on Linux
CVE-2026-13507 volcengine OpenViking Local VectorDB Primary-key Label str_to_uint64.py str_to_uint64 data authenticity
CVE-2024-28251 Cross-site websocket hijacking in Querybook
