CVE Vulnerabilities

CVE-2023-0493

Improper Neutralization of Equivalent Special Elements

Published: Jan 26, 2023 | Modified: Nov 21, 2024
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Improper Neutralization of Equivalent Special Elements in GitHub repository btcpayserver/btcpayserver prior to 1.7.5.

Weakness

The product correctly neutralizes certain special elements, but it improperly neutralizes equivalent special elements.

Affected Software

Name Vendor Start Version End Version
Btcpay_server Btcpayserver * 1.7.5 (excluding)

Potential Mitigations

References