CVE-2023-30951

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 3, 2023

Updated: Nov 7, 2023

CWE ID 611

Summary

CVE-2023-30951 is a new vulnerability affecting the Foundry Magritte plugin rest-source. Hackers can exploit this vulnerability through an XML External Entity (XXE) attack, which allows them to inject and execute malicious code outside the intended XML document. This can lead to information disclosure, server crashes, or even remote code execution, posing a significant security risk to systems using the affected plugin. It is crucial for users to apply the necessary patches or updates as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ryX0CG
https://www.cve.org/CVERecord?id=CVE-2023-30951
https://nvd.nist.gov/vuln/detail/CVE-2023-30951

Back to Vulnerability Database

CVE-2023-30951

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations