CVSS 3.1 Score 5.5 of 10 (medium)


Published Nov 8, 2023
Updated: Nov 15, 2023
CWE ID 732


CVE-2023-5136 is a vulnerability that affects the TopoGrafix DataPlugin for GPX. The vulnerability involves an incorrect permission assignment, which could lead to information disclosure. To exploit this vulnerability, an attacker would need to trick a user into opening a specially crafted data file. The potential danger of this vulnerability is high, as it can result in the unauthorized disclosure of sensitive information. It has a base severity rating of MEDIUM and a base score of 5.5 according to the CVSS 3.1 scoring system. The affected products include various versions of nUlf0f, nUlf0g, nUlf0h, t0W1gQ, t0V6ac, t0V6ad, and many others. Remediation for this vulnerability may require applying patches or updates provided by the vendor to fix the permission assignment issue in the affected software.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5136 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options