CVE-2023-43793
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Oct 4, 2023
Updated: Oct 11, 2023
CWE ID 287
Summary
CVE-2023-43793 is a vulnerability affecting Misskey, an open-source decentralized social media platform. Prior to version 2023.9.0, attackers could manipulate URLs to bypass the authentication process for the Bull dashboard, gaining unauthorized access to the job queue management UI. This issue has been addressed in version 2023.9.0, and currently, no known workarounds exist for this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share