CVE-2023-47321

Summary

CVE-2023-47321 is a new cybersecurity vulnerability affecting the Silverpeas Core 6.3.1. This issue involves the "Porlet Deployer" functionality, which grants administrators the ability to deploy .WAR portlets. However, there is an incorrect access control problem, allowing unauthorized users to potentially deploy portlets with elevated privileges or malicious code, posing a significant risk to the system's security. This vulnerability could potentially lead to unintended consequences and potential data breaches if not addressed promptly. Users are advised to update their Silverpeas Core installations to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.