CVE-2023-47648

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 2, 2025

CWE ID 862

Summary

CVE-2023-47648 is a new vulnerability that has been identified in the EazyDocs component of spider-themes. This issue involves aMissing Authorization vulnerability, which means that access control security levels in EazyDocs may be incorrectly configured. As a result, unauthorized users may be able to exploit this weakness and gain unauthorized access to sensitive information. This vulnerability affects EazyDocs versions from n/a through 2.3.5, making it essential for users to apply the necessary patches or updates as soon as possible to safeguard their systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tT9wFQ
https://www.cve.org/CVERecord?id=CVE-2023-47648
https://nvd.nist.gov/vuln/detail/CVE-2023-47648

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2023-47648

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations