CVE-2023-6267

CVSS V2 None CVSS V3 None
Description
A flaw was found in the json payload. If annotation based security is used to secure a REST resource, the JSON body that the resource may consume is being processed (deserialized) prior to the security constraints being evaluated and applied. This does not happen with configuration based security.
Overview
  • CVE ID
  • CVE-2023-6267
  • Assigner
  • redhat
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-01-25T18:12:44.771Z
  • Last Modified Date
  • 2024-05-13T21:00:13.693Z
References
Reference URL Reference Tags
https://access.redhat.com/errata/RHSA-2024:0494 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0495 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-6267 vdb-entry x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2251155 issue-tracking x_refsource_REDHAT
History
Created Old Value New Value Data Type Notes
2024-06-25 07:00:59 Added to TrackCVE