Search Insyde.com

Insyde's Security Pledge

Recent Security Advisories

INSYDE-SA-2023068

Product

CVSS Score

Original Date

Last Revised

Supervyse

5.3~6.5

2024-03-12

Summary

Upgrade curl to version 8.5.0.

Vulnerability Details

CVSS Vector: See description

CVE-2023-46218
CVSS: 6.3
CVSS Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Description: cookie mixed case PSL bypass
CVE-2023-46219
CVSS: 5.3
CVSS Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Description: HSTS long file name clears contents.

Solution Information

SPF: RV24.05 and after.
OPF: RV24.05 and after.
OPF 2.0: RV24.05 and after.

Acknowledgements

Revision History

Revision #

Date

Description

1

2024-03-12

Initial Release

< Back to Security Pledge