CVE-2023-3578

CVSS Score of 10 (low)

Details

Published Jul 10, 2023

Updated: May 17, 2024

CWE ID 918

Summary

CVE-2023-3578 is a critical vulnerability found in DedeCMS 5.7.109, specifically in the file co_do.php. The flaw allows for server-side request forgery through the manipulation of the rssurl argument. The exploit has been publicly disclosed and could be utilized by attackers. The vulnerability has a CVSS score of 5.2, indicating partial impact on availability, confidentiality, and integrity. Remediation measures should be taken to address this vulnerability and protect organizations using DedeCMS 5.7.109 from potential threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rwd8Hl
https://www.cve.org/CVERecord?id=CVE-2023-3578
https://nvd.nist.gov/vuln/detail/CVE-2023-3578

Back to Vulnerability Database

CVE-2023-3578

CVSS Score of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations