CVE-2023-43905

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 26, 2023
Updated: Nov 3, 2023
CWE ID 522

Summary

CVE-2023-43905 is a newly identified vulnerability affecting writercms version 1.1.0. This issue involves an incorrect access control, permitting unauthorized access to backend account passwords. The precise vectors through which this exploit can be executed have yet to be determined. Successful exploitation of this vulnerability could result in attackers gaining administrative access to writercms systems, potentially leading to data theft or other malicious activities. It is highly recommended that users of writercms v1.1.0 upgrade to a patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share