CVE-2023-40788

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Sep 19, 2023

CWE ID 668

Summary

CVE-2023-40788: A vulnerability has been identified in SpringBlade versions below 3.6.0. This issue stems from incorrect configuration in the default gateway, leading to unauthorized access to error logs, constituting an Incorrect Access Control issue. Attackers can exploit this vulnerability to gain unapproved insights into system error information, potentially revealing sensitive data or system weaknesses. Updating to the latest version of SpringBlade is recommended to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbNNaa
https://www.cve.org/CVERecord?id=CVE-2023-40788
https://nvd.nist.gov/vuln/detail/CVE-2023-40788

Back to Vulnerability Database

CVE-2023-40788

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations