CVE-2023-48171

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 12, 2024
Updated: Sep 18, 2024
CWE ID 269

Summary

CVE-2023-48171 is a privilege escalation vulnerability affecting OWASP DefectDojo before version 1.5.3.1. An attacker can exploit this issue in the user permissions component to escalate their privileges remotely, potentially gaining unauthorized access to sensitive information or system functions. This vulnerability poses a significant risk to organizations using the affected version of OWASP DefectDojo and emphasizes the importance of keeping software up-to-date to mitigate potential cybersecurity threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

  • Open Web Application Security Project Foundation