CVE-2023-39061

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Aug 21, 2023
Updated: Aug 24, 2023
CWE ID 352

Summary

CVE-2023-39061 is a Cross-Site Request Forgery (CSRF) vulnerability affecting Chamilo versions 1.11 to 1.11.20. This issue enables a remote, authenticated, privileged attacker to execute arbitrary code. The CSRF vulnerability allows an attacker to craft a malicious request that, when executed by an unsuspecting user, can lead to unintended actions, such as data modification or unauthorized system commands. The successful exploitation of this weakness can result in significant security implications, including potential data breaches and unauthorized access to sensitive information. It is crucial for Chamilo users to apply the available patch as soon as possible to mitigate the risk associated with this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share