admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2023/CVE-2023-52075.md

18 lines
997 B
Markdown
Raw Normal View History

Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00
### [CVE-2023-52075](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52075)
![](https://img.shields.io/static/v1?label=Product&message=revanced-api&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%3D%2071f81f7f20cd26fd707335bca9838fa3e7df20d2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-755%3A%20Improper%20Handling%20of%20Exceptional%20Conditions&color=brighgreen)
### Description
ReVanced API proxies requests needed to feed the ReVanced Manager and website with data. Up to and including commit 71f81f7f20cd26fd707335bca9838fa3e7df20d2, ReVanced API lacks error caching causing rate limit to be triggered thus increasing server load. This causes a denial of service for all users using the API. It is recommended to implement proper error caching.
### POC
#### Reference
- https://github.com/ReVanced/revanced-api/security/advisories/GHSA-852x-grxp-8p3q
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink