CVE-2023-4124

CVSS 3.1 Score 5.3 of 10 (medium)

Attack Complexity low
Integrity low
Confidentiality none
Availability none
Scope unchanged
Privileges Required none

Details

Published Aug 3, 2023
Updated: Aug 8, 2023
CWE ID 862

Summary

CVE-2023-4124 designates a vulnerability in the answerdev/answer GitHub repository before version 1.1.1. This issue involves a missing authorization control, implying that unauthorized users may have gained access to sensitive information or even taken actions they shouldn't have been able to perform within the repository. The repercussions could potentially result in data leaks, unintended modifications, or other security breaches. It is crucial for repository administrators to apply the necessary updates or patches to mitigate this risk and ensure proper access control measures are in place.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share