CVE-2023-4853

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Sep 20, 2023
Updated: Dec 21, 2023
CWE ID 148
CWE ID 863

Summary

CVE-2023-4853 is a vulnerability in Quarkus, affecting multiple products. It is categorized as a high-severity issue with a CVSS base score of 8.1. The vulnerability arises from the incorrect evaluation of permissions in HTTP security policies, allowing an attacker to bypass the security policy and gain unauthorized access to endpoints. This can potentially lead to a denial of service and compromise the confidentiality and integrity of an organization's data. The vulnerability has not been remediated, and its impact score is 5.9 out of 10.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-4853 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options