CVE-2023-45367: 
NixOS vulnerability analysis and mitigation

A vulnerability (CVE-2023-45367) was discovered in the CheckUser extension for MediaWiki affecting versions before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. The vulnerability allows users to exploit a URL path (rest.php/checkuser/v0/useragent-clienthints/revision/) to store an unlimited number of rows in cuuseragentclienthints, potentially leading to a denial of service (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 6.5 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H. The attack vector is network-accessible (AV:N), requires low attack complexity (AC:L), needs low privileges (PR:L), requires no user interaction (UI:N), and affects only the availability of the system (C:N/I:N/A:H) (NVD).

The primary impact of this vulnerability is on system availability. An attacker can cause a denial of service condition by exploiting the ability to store an unlimited number of rows in the cuuseragentclienthints database table (NVD).

Users should upgrade to MediaWiki versions 1.35.12, 1.39.5, or 1.40.1 or later, depending on their current version track. These versions contain patches that address the vulnerability (NVD).