CVE-2023-46480

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 27, 2023
Updated: Jul 12, 2024
CWE ID 94
CWE ID 918

Summary

CVE-2023-46480 is a vulnerability affecting OwnCast version 0.1.1. Hackers can exploit this issue by manipulating the authHost parameter in the indieauth function. This allows them to execute arbitrary code and obtain sensitive information remotely. This vulnerability poses a significant risk to users of OwnCast and highlights the importance of keeping software up to date to protect against such attacks. Users are advised to upgrade to the latest version of OwnCast to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share