CVE-2023-35150

CVSS Score of 10 (low)

Details

Published Jun 23, 2023
Updated: Jun 30, 2023
CWE ID 94
CWE ID 95

Summary

CVE-2023-35150 is a vulnerability in XWiki Platform versions prior to 14.4.8, 14.10.4, and 15.0 that allows any user with view rights on any document to execute code with programming rights, leading to remote code execution by crafting a malicious URL. The vulnerability has been patched in XWiki versions 15.0, 14.10.4, and 14.4.8. This vulnerability poses a potential danger to organizations as it allows an attacker to execute arbitrary code on the affected system, potentially compromising its integrity and confidentiality.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35150 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options