CVSS 3.1 Score 7.8 of 10 (high)


Published Dec 22, 2023
Updated: Jan 4, 2024
CWE ID 269


CVE-2023-51386 is a vulnerability that affects Sandbox Accounts for Events, a service that provides temporary AWS accounts to authenticated users. This vulnerability allows authenticated users to potentially access data from the events table by sending request payloads to the events API, giving them insights into upcoming events and joining events they were not invited to. The issue has been patched in version 1.10.0 of the product. The vulnerability has a high severity rating with a base score of 7.8 and poses a potential danger to organizations as it can lead to unauthorized data access and compromise the confidentiality and integrity of the information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51386 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options