CVE-2023-52075

HIGH

ReVanced API <71f81f7f20cd26fd707335bca9838fa3e7df20d2 - DoS

Title source: llm

Description

ReVanced API proxies requests needed to feed the ReVanced Manager and website with data. Up to and including commit 71f81f7f20cd26fd707335bca9838fa3e7df20d2, ReVanced API lacks error caching causing rate limit to be triggered thus increasing server load. This causes a denial of service for all users using the API. It is recommended to implement proper error caching.

References (1)

[Vendor Advisory] https://github.com/ReVanced/revanced-api/security/advisories/GHSA-852x-grxp-8p3q

Scores

CVSS v3 7.5

EPSS 0.0019

EPSS Percentile 40.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-755

Status published

Products (1)

revanced/revanced < 2023-11-25

Published Dec 27, 2023

Tracked Since Feb 18, 2026