CVE-2023-45596

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 5, 2024

CWE ID 862

Summary

CVE-2023-45596 is a newly disclosed vulnerability affecting the AiLux imx6 bundle below version imx6_1.0.7-2. This issue, classified as a CWE-862 "Missing Authorization" vulnerability, allows unauthenticated attackers to gain access to confidential configuration files through the "file_configuration" functionality of the web application. The flaw puts sensitive information at risk of exposure and potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s8NfFD
https://www.cve.org/CVERecord?id=CVE-2023-45596
https://nvd.nist.gov/vuln/detail/CVE-2023-45596

Back to Vulnerability Database

CVE-2023-45596

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations