CVE-2023-6759

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 13, 2023
Updated: Mar 21, 2024
CWE ID 837

Summary

CVE-2023-6759 is a vulnerability found in Thecosy IceCMS 2.0.1, affecting an unspecified part of the file /WebResource/resource in the component Love Handler. This vulnerability allows for remote exploitation by manipulating enforcement of a single, unique action. The exploit has been publicly disclosed and may be used by attackers. It has a base severity rating of HIGH (7.5) according to NIST, with an impact score of 3.6 and an exploitability score of 3.9. The vulnerability does not require any privileges or user interaction, and its attack vector is through the network. While it does not have integrity or confidentiality impacts, it poses a high availability risk to organizations using the affected product.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6759 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options