Improper Neutralization of Equivalent Special Elements
CVE-2023-0493
Summary
Improper Neutralization of Equivalent Special Elements in btcpayserver versions prior to 1.7.3.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- LOW
- HIGH
- HIGH
CWE-76 - Improper Neutralization of Equivalent Special Elements
The software properly neutralizes certain special elements, but it improperly neutralizes equivalent special elements.
References
Advisory Timeline
- Published