CVSS 3.1 Score 5.4 of 10 (medium)


Published Dec 12, 2023
Updated: Dec 15, 2023
CWE ID 863


CVE-2023-49273 is a cyber vulnerability that affects the Umbraco ASP.NET content management system. Specifically, versions 8.0.0 and earlier up to versions 8.18.10, 10.8.1, and 12.3.4 are vulnerable to this issue. The vulnerability allows users with low privileges, such as Editors, to access unintended endpoints. However, the issue has been patched in versions 8.18.10, 10.8.1, and 12.3.4 of Umbraco CMS. The potential danger posed by this vulnerability is that unauthorized users could gain access to sensitive information or perform unauthorized actions within the affected organization's Umbraco CMS environment if not remediated promptly.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-49273 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options