CVE-2023-3218
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Jun 13, 2023
Updated: Jun 21, 2023
CWE ID 120
Summary
CVE-2023-3218 is a race condition vulnerability identified in the it-novum/openitcockpit GitHub repository before version 4.6.5. This issue allows an attacker to manipulate thread synchronization, potentially leading to unintended code execution or denial of service. A successful exploit could give an attacker administrative access or allow them to disrupt the functionality of affected systems. Users are urged to update to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Opensuse