CVE-2023-23823
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-23823 is a Missing Authorization vulnerability affecting the Clever Widgets Enhanced Text Widget. The issue arises due to incorrectly configured access control security levels, enabling attackers to exploit the vulnerability. This affects versions of the Enhanced Text Widget from n/a through 1.5.8. Successful exploitation could lead to unauthorized access and potential data compromise. Users are advised to update to the latest version of the widget or implement appropriate access control measures to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share