HIGH CVE

CVE-2023-44487

CVE security information and ecosystem impact

7.5 CVSS

n/a EPSS

14 Affected Tools

No KEV Listed

Description

No CVE description is available yet.

Ecosystem Response

12 Tracked

10 Patched

2 Unpatched

10 of 12 affected tools have patched.

Affected Tools

Tool	Affected Package or Release	Patched In
CloudStack	4.22.0.1 org.apache.tomcat.embed:tomcat-embed-core@	4.22.1.0
doris	4.1.1 golang.org/x/[email protected]	Unknown
Checkov	3.2.527 golang.org/x/[email protected]	3.2.528
dolt	golang.org/x/[email protected] v1.88.0	v1.88.1
etcd	golang.org/x/[email protected] v3.4.45	v3.5.31
ocis	golang.org/x/[email protected] v8.0.2	v8.0.3
starrocks	4.0.10 org.apache.tomcat.embed:tomcat-embed-core@	Unknown
xwiki-platform	org.eclipse.jetty.http2:http2-common@ xwiki-platform-18.4.0-rc-1	xwiki-platform-18.4.0
Deepfence ThreatMapper	golang.org/x/[email protected]	Unknown
opensnitch	golang.org/x/[email protected]	Unknown
middleware-manager	golang.org/x/[email protected]	Unknown
Sensu	golang.org/x/[email protected]	Unknown
shellhub	golang.org/x/[email protected]	Unknown
statping-ng	golang.org/x/[email protected]	Unknown

Dates

Published: 2023-10-10
Modified: 2026-05-06

CVSS Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: High

Beta — feedback welcome: [email protected]