Security Advisory

CVE-2023-27163

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-31 00:00:00
Last updated 2025-02-18 16:06:42
Assigner mitre
State PUBLISHED

Description

request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/baskets/{name}. This vulnerability allows attackers to access network resources and sensitive information via a crafted API request.