CVE-2023-5916
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Nov 2, 2023
Updated: May 17, 2024
CWE ID 284
Summary
CVE-2023-5916 is a newly disclosed critical vulnerability that impacts the Lissy93 Dashy 2.1.1 Configuration Handler. The issue lies within the /config-manager/save file and is triggered by manipulating the config argument. This vulnerability bypasses access controls, allowing unauthorized access. The exploit has been made public, increasing the risk of remote attacks. Vulnerability database VDB has assigned the identifier VDB-244305 to this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share