What is CVE-2023-0833?

CVE-2023-0833 is a medium-severity information disclosure vulnerability in Red Hat's AMQ-Streams, stemming from an OKHttp component flaw. An authenticated attacker may exploit this to access unauthorized information. Immediate patching is advised.

What is the severity of CVE-2023-0833?

CVE-2023-0833 has a severity rating of MEDIUM with a CVSS base score of 4.7.

CVE-2023-0833 | Redhat - Error Message Disclosure

CVE-2023-0833 is a medium-severity vulnerability found in Red Hat's AMQ-Streams, which utilizes the OKHttp component. This flaw allows for information disclosure via an exception triggered by an illegal value in a header. The vulnerability could enable an authenticated attacker to access information beyond their normal permissions.

The CVSS score for this vulnerability is 4.7, indicating a medium severity level. This means that organizations utilizing affected versions of the AMQ-Streams should give this matter immediate attention to mitigate potential risks.

Risk to organizations includes potential unauthorized access to sensitive information, which could lead to data breaches or compliance violations. Therefore, organizations should prioritize patching immediately.

Currently, there are no known exploits publicly available for this vulnerability, and it is not listed in the Known Exploited Vulnerabilities (KEV) database. However, the potential for exploitation remains a concern, highlighting the importance of timely remediation.

Vulnerability Details

The vulnerability described in CVE-2023-0833 arises from a flaw in the OKHttp component utilized by Red Hat's AMQ-Streams. Officially, it is classified under CWE-209, indicating an information exposure issue.

The vulnerability was published on September 27, 2023, and affects versions of the AMQ-Streams that ship with the vulnerable OKHttp version prior to 4.9.2. The specific impact is classified as high for confidentiality, with no integrity or availability impact.

The CVSS vector string for this vulnerability is CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N, indicating a local attack vector, high complexity, low privileges required, and no user interaction necessary.

Technical Analysis

The root cause of CVE-2023-0833 is an improper handling of exceptions triggered by illegal header values in the OKHttp component. This leads to the exposure of sensitive information that should remain inaccessible to unauthorized users.

The attack vector is classified as local, meaning that an attacker must have access to the local network where the vulnerable application is running. The attack complexity is high, requiring specific conditions to be met, but the privileges required are low, allowing authenticated users to exploit this flaw without additional escalations.

User interaction is not required for the vulnerability to be exploited, which further raises the risk for organizations. The confidentiality impact is high, as sensitive data can be disclosed, while integrity and availability impacts are assessed as none.

Risk & Impact Analysis

The real-world deployment risk associated with CVE-2023-0833 is significant, particularly for organizations that rely on the AMQ-Streams for messaging and communication. The potential for unauthorized access to sensitive information poses a serious threat, potentially leading to data breaches and compliance issues.

Organizations should address this vulnerability in their priority patch cycle, especially those operating in regulated environments or handling sensitive data. The blast radius could be extensive if the vulnerability is exploited, as it may lead to the exposure of multiple user accounts and sensitive information.

Given the CVSS score of 4.7 and the absence of known exploits, organizations should still treat this vulnerability with urgency, as the potential for risk is non-negligible.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions of Red Hat AMQ-Streams include any version prior to 2.2.1 and those between 2.3.0 and 2.4.0, as well as the OKHttp component versions prior to 4.9.2. Organizations should ensure they are using updated versions to mitigate this vulnerability.

Mitigation & Remediation

To mitigate CVE-2023-0833, organizations should upgrade to the patched versions of Red Hat AMQ-Streams and OKHttp. Red Hat recommends updating to AMQ-Streams version 2.2.1 or higher, and OKHttp version 4.9.2 or higher.

If an immediate patch is not available, organizations should consider implementing network controls to restrict access to affected systems and monitor for any unusual activity that may indicate exploitation attempts. Additionally, configuration hardening can help lessen the attack surface.

For ongoing security, organizations may benefit from conducting regular penetration testing to identify vulnerabilities like CVE-2023-0833 in their environments. Regular assessments are crucial in maintaining security posture.

Detection Guidance

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2023-0833: Medium Vulnerability in Red Hat AMQ-Streams