CVE-2023-38513

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Dec 20, 2023

Updated: Dec 28, 2023

CWE ID 639

Summary

CVE-2023-38513 is a newly disclosed vulnerability affecting the Jordy Meow Photo Engine, specifically in Media Organizer & Lightroom versions from n/a to 6.2.5. This issue involves an Authorization Bypass through User-Controlled Keys, allowing unauthorized access to restricted functionalities or data. The vulnerability could potentially enable attackers to manipulate the system or gain privileged access, posing a significant risk to users. Organizations and individuals using the affected versions of Jordy Meow Photo Engine should apply the available patches or updates as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database