CVE-2023-43793

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 4, 2023
Updated: Oct 11, 2023
CWE ID 287

Summary

CVE-2023-43793 is a vulnerability affecting Misskey, an open-source decentralized social media platform. Prior to version 2023.9.0, attackers could manipulate URLs to bypass the authentication process for the Bull dashboard, gaining unauthorized access to the job queue management UI. This issue has been addressed in version 2023.9.0, and currently, no known workarounds exist for this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share