Home

CVE-2020-28483

Description

This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a clients IP can be spoofed by setting the X-Forwarded-For header.

Risk Information

Base Score
7.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
EPSS Score
Exploitation Probability
0.36

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.1Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234