CVE-2023-3304

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 23, 2023

Updated: Jun 28, 2023

CWE ID 20

Summary

CVE-2023-3304 is a vulnerability affecting the GitHub repository admidio/admidio before version 4.2.9. The issue involves improper access control, granting unauthorized users potential write access to critical files. This could lead to data manipulation, unintended functionality changes, or even complete takeover of the affected repository. Developers are urged to update to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/trbEqo
https://www.cve.org/CVERecord?id=CVE-2023-3304
https://nvd.nist.gov/vuln/detail/CVE-2023-3304

Back to Vulnerability Database

CVE-2023-3304

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations