CVE-2023-48218

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 20, 2023

Updated: Nov 29, 2023

CWE ID 863

Summary

CVE-2023-48218 is a vulnerability affecting the Strapi Protected Populate Plugin before version 1.3.4. This issue allowed users to bypass field-level security and populate fields that they did not have access to. Consequently, sensitive data could be accessed or modified. Users are strongly advised to update to the patched version, 1.3.4, as there are currently no known workarounds for this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tY1SDz
https://www.cve.org/CVERecord?id=CVE-2023-48218
https://nvd.nist.gov/vuln/detail/CVE-2023-48218

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-2023-48218

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations