-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| bottle | pip | < 0.12.20 | 0.12.20 |
Miggo AIRoot Cause AnalysisThe vulnerability stems from error handling sequence in request processing. The commit e140e1b shows the critical fix moved path encoding/decoding operations INSIDE the try-block after request binding initialization. Previously, UnicodeError exceptions during path processing (lines 852-856 in original code) occurred BEFORE request/response binding, bypassing proper error handling. This made the server vulnerable to crashes from malformed requests before the error handling infrastructure was fully initialized.