CVE-2023-3348

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 3, 2023

Updated: Aug 29, 2023

CWE ID 77

Summary

CVE-2023-3348: A critical vulnerability was identified in the Wrangler command line tool, specifically in versions less than or equal to 3.1.0 and 2.20.1. This issue involves a directory traversal flaw that impacts the local development server for Pages, allowing attackers on the same network to connect to the server and access files outside of the designated directory. This vulnerability poses a significant risk for data breaches and unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

TOTOLINK

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rcy258
https://www.cve.org/CVERecord?id=CVE-2023-3348
https://nvd.nist.gov/vuln/detail/CVE-2023-3348

Back to Vulnerability Database

CVE-2023-3348

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations