← Zuruck zu CVEs
CVE-2023-7332
N/ABeschreibung
PocketMine-MP versions prior to 4.18.1 contain an improper input validation vulnerability in inventory transaction handling. A remote attacker with a valid player session can request that the server drop more items than are available in the player's hotbar, triggering a server crash and resulting in denial of service.
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht12/31/2025
Zuletzt geandert1/2/2026
Quellenvd
Honeypot-Sichtungen0
Schwachen (CWE)
CWE-1284
Referenzen
https://github.com/pmmp/PocketMine-MP/blob/4.18.1/changelogs/4.18.md(disclosure@vulncheck.com)
https://github.com/pmmp/PocketMine-MP/commit/5897476(disclosure@vulncheck.com)
https://github.com/pmmp/PocketMine-MP/security/advisories/GHSA-h87r-f4vc-mchv(disclosure@vulncheck.com)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.