CVE-2023-48052
CVSS 3.1 Score 7.4 of 10 (high)
Details
Published Nov 16, 2023
Updated: Aug 14, 2024
CWE ID 599
CWE ID 295
Summary
CVE-2023-48052 is a cybersecurity vulnerability affecting HTTPie version 3.2.2. This issue involves a missing SSL certificate validation, allowing attackers to carry out man-in-the-middle attacks. As a result, sensitive information exchanged between the host and server can be intercepted and read by the attacker. Users are advised to update their HTTPie software as soon as possible to mitigate this risk. This vulnerability can lead to data breaches and potential unauthorized access to secure communications.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- HTTPie