CVE-2023-39966

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 10, 2023

Updated: Sep 8, 2023

CWE ID 862

Summary

CVE-2023-4304 denotes a business logic error found in the froxlor/froxlor GitHub repository before versions 2.0.22 and 2.1.0. This vulnerability allows unauthorized users to manipulate the system's configuration by providing invalid or malicious input data. As a result, attackers can gain unintended access to sensitive information or modify settings, potentially leading to data breaches and system instability. Users are advised to update their froxlor installations to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sQTAVc
https://www.cve.org/CVERecord?id=CVE-2023-39966
https://nvd.nist.gov/vuln/detail/CVE-2023-39966

Back to Vulnerability Database

CVE-2023-39966

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations