CVE-2023-47327

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Dec 13, 2023
Updated: Dec 18, 2023

Summary

CVE-2023-47327 is a vulnerability affecting the "Create a Space" feature in Silverpeas Core 6.3.1. Contrary to intended access restrictions, this function exhibits broken access control, enabling any authenticated user to bypass administrative privileges and create new spaces by navigating to a specific URL. This issue poses a potential security risk, as unauthorized users could misuse this functionality to manipulate content or gain unintended access. Silverpeas Core 6.3.1 users are advised to apply the necessary patch or update to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share