3.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2023-3163

GHSA ID

GHSA-g3hh-q55f-9g3w

EPSS Score

0.55435%

CWE

CWE-89

Published

6/8/2023

Updated

11/11/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2023-3163

CVE-2023-3163: RuoYi Uncontrolled Resource Consumption vulnerability

A vulnerability was found in y_project RuoYi up to 4.7.7. It has been classified as problematic. Affected is the function filterKeyword. The manipulation of the argument value leads to resource consumption. VDB-231090 is the identifier assigned to this vulnerability.

(GitHub Advisory)

3.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2023-3163

GHSA ID

GHSA-g3hh-q55f-9g3w

EPSS Score

0.55435%

CWE

CWE-89

Published

6/8/2023

Updated

11/11/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
com.ruoyi:ruoyi	maven	<= 4.7.7

Vulnerability Intelligence
Miggo AI

Root Cause Analysis:

In progress

WAF Protection Rules

WAF Rule

* vuln*r**ility w*s *oun* in y_proj**t RuoYi up to *.*.*. It **s ***n *l*ssi*i** *s pro*l*m*ti*. *****t** is t** *un*tion *ilt*rK*ywor*. T** m*nipul*tion o* t** *r*um*nt v*lu* l***s to r*sour** *onsumption. V**-****** is t** i**nti*i*r *ssi*n** to t*

Reasoning

No *n*lysis *v*il**l*

3.5

Basic Information

Concerned about an active attack path?

CVE-2023-3163: RuoYi Uncontrolled Resource Consumption vulnerability

3.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI