CVE-2023-22478

Name of the Vulnerable Software and Affected Versions KubePi versions prior to 1.6.4

Description The issue allows unauthorized access to system API interfaces, potentially leaking sensitive information. This is due to a flaw in how online applications handle routing permissions. There are no known workarounds.

Recommendations For versions prior to 1.6.4, upgrade to version 1.6.4 to resolve the issue. As a temporary workaround, consider restricting access to the API interfaces until the upgrade is applied.