What is CVE-2023-27587?

CVE-2023-27587 is a high-severity vulnerability in Rozbb Readtomyshoe, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 7.4/10. Published 2023-03-13.

How severe is CVE-2023-27587?

High severity. CVSS v3 base score is 7.4 out of 10.

Is CVE-2023-27587 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Information disclosure in Rozbb Readtomyshoe

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an…

EPSS: 0.837 (99.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.4 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N.

Affected products

Rozbb Readtomyshoe — versions <= 0.2.0

Weakness classification (CWE)

CWE-209 — Generation of Error Message Containing Sensitive Information

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2023-27587?: CVE-2023-27587 is a high-severity vulnerability in Rozbb Readtomyshoe, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 7.4/10. Published 2023-03-13.
How severe is CVE-2023-27587?: High severity. CVSS v3 base score is 7.4 out of 10.
Is CVE-2023-27587 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.