CVE-2023-35166

CVSS Score of 10 (low)

Details

Published Jun 20, 2023
Updated: Jun 28, 2023
CWE ID 863

Summary

CVE-2023-35166 is a vulnerability found in XWiki Platform, affecting versions 15.1-rc-1 and 14.10.5. It allows an attacker to execute any wiki content with the same privileges as the TipsPanel author by creating a tip UI extension. This vulnerability has been patched in the mentioned versions. The risk score is 67, indicating a high severity level. The potential danger to an organization includes unauthorized execution of code and potential data breaches due to incorrect authorization.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35166 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options