CVE-2023-49210

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 23, 2023
Updated: Mar 21, 2024
CWE ID 77

Summary

CVE-2023-49210, also known as the openssl vulnerability, affects the openssl NPM package through version 2.0.0. This vulnerability only impacts products that are no longer supported by the maintainer. It allows for command injection through an opts argument that contains a verb field. The base severity of this vulnerability is rated as CRITICAL with a base score of 9.8 out of 10, indicating a high level of danger to organizations. To remediate this vulnerability, affected products should be updated to a supported version that addresses the issue.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-49210 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options