Improper Error Handling in REST API Exposes Internal WSO2 Package Name

Improper Error Handling in REST API Exposes Internal WSO2 Package Name

CVE-2023-6839 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Due to improper error handling, a REST API resource could expose a server side error containing an internal WSO2 specific package name in the HTTP response.

Learn more about our Cis Benchmark Audit For Server Software.